An approach for malware behavior identification and classification

Malware is one of the major security threats that can break computer operation. However, commercial anti-virus or anti-spyware that used signature-based matching to detects malware cannot solve that kind of threats. Nowadays malware writers try to avoid detection by using several techniques such as...

Celý popis

Uloženo v:
Podrobná bibliografie
Vydáno v:2011 3rd International Conference on Computer Research and Development Ročník 1; s. 191 - 194
Hlavní autoři: Zolkipli, Mohamad Fadli, Jantan, Aman
Médium: Konferenční příspěvek
Jazyk:angličtina
Vydáno: IEEE 01.03.2011
Témata:
behavior analysis
Computer architecture
Computer science
computer security
Computers
Malware
malware classification
Operating systems
Virtual machining
ISBN:1612848397, 9781612848396
On-line přístup:Získat plný text
Tagy: Přidat tag
Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!
Popis
Shrnutí:Malware is one of the major security threats that can break computer operation. However, commercial anti-virus or anti-spyware that used signature-based matching to detects malware cannot solve that kind of threats. Nowadays malware writers try to avoid detection by using several techniques such as polymorphic, metamorphic and also hiding technique. In order to overcome that issue, we proposed a new framework for malware behavior identification and classification that apply dynamic approach. This framework consists of two major processes such as behavior identification and malware classification. These two major processes will integrate together as interrelated process in our proposed framework. Result from this study is a new framework that able to identify and classify malware based on it behaviors.
ISBN:1612848397
9781612848396
DOI:10.1109/ICCRD.2011.5764001