The Unknown Computer Viruses Detection Based on Similarity

被引：1

作者：

Liu, Zhongda ^{[1
]}

Nakaya, Naoshi ^{[1
]}

Koui, Yuuji ^{[1
]}

机构：

[1] Iwate Univ, Grad Sch Engn, Morioka, Iwate 0208551, Japan

来源：

IEICE TRANSACTIONS ON FUNDAMENTALS OF ELECTRONICS COMMUNICATIONS AND COMPUTER SCIENCES | 2009年 / E92A卷 / 01期

关键词：

computer virus; unknown virus; static analysis technology; similarity;

D O I：

10.1587/transfun.E92.A.190

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

New computer viruses are continually being generated and they cause damage all over the world. In general, current anti-virus software detects viruses by matching a pattern based on the signature; thus, unknown viruses without any signature cannot be detected. Although there are some static analysis technologies that do not depend on signatures, virus writers often use code obfuscation techniques, which make it difficult to execute a code analysis. As is generally known, unknown viruses and known viruses share a common feature. In this paper we propose a new static analysis technology that can circumvent code obfuscation to extract the common feature and detect unknown viruses based on similarity. The results of evaluation experiments demonstrated that this technique is able to detect unknown viruses without false positives.

引用

页码：190 / 196

页数：7

共 50 条

[31] Computer viruses
Rodica, S
Pop, I
Micula, S
[J]. Bulletin of the University of Agricultural Sciences and Veterinary Medicine, Vol 61: HORTICULTURE, 2004, 61 : 362 - 366
[32] COMPUTER VIRUSES
HRUSKA, J
[J]. INFORMATION AGE, 1990, 12 (02): : 100 - 108
[33] Unknown malware detection based on IRP
Zhang, Fu-Yong
Qi, De-Yu
Hu, Jing-Lin
[J]. Huanan Ligong Daxue Xuebao/Journal of South China University of Technology (Natural Science), 2011, 39 (04): : 15 - 20
[34] Microparticle-Based Detection of Viruses
Khanthaphixay, Bradley
Wu, Lillian
Yoon, Jeong-Yeol
[J]. BIOSENSORS-BASEL, 2023, 13 (08):
[35] Domain similarity based orthology detection
Bitard-Feildel, Tristan
Kemena, Carsten
Greenwood, Jenny M.
Bornberg-Bauer, Erich
[J]. BMC BIOINFORMATICS, 2015, 16
[36] Domain similarity based orthology detection
Tristan Bitard-Feildel
Carsten Kemena
Jenny M Greenwood
Erich Bornberg-Bauer
[J]. BMC Bioinformatics, 16
[37] A COMPUTER-BASED SYSTEM FOR THE IDENTIFICATION OF UNKNOWN TYPESTYLES
TOTTY, RN
HALL, MG
HARDCASTLE, RA
BROWN, C
[J]. JOURNAL OF THE FORENSIC SCIENCE SOCIETY, 1982, 22 (01): : 65 - 73
[38] Computer-Assisted Retrosynthesis Based on Molecular Similarity
Coley, Connor W.
Rogers, Luke
Green, William H.
Jensen, Klavs F.
[J]. ACS CENTRAL SCIENCE, 2017, 3 (12) : 1237 - 1245
[39] Improving the detection of unknown computer worms activity using active learning
Moskovitch, Robert
Nissim, Nir
Stopel, Dima
Feher, Clint
Englert, Roman
Elovici, Yuval
[J]. KI 2007: ADVANCES IN ARTIFICIAL INTELLIGENCE, PROCEEDINGS, 2007, 4667 : 489 - +
[40] THE UNKNOWN IN COMPUTER ALGEBRA
DAVENPORT, J
FAURE, C
[J]. PROGRAMMING AND COMPUTER SOFTWARE, 1994, 20 (01) : 1 - 5

← 1 2 3 4 5 →