The Unknown Computer Viruses Detection Based on Similarity

被引：1

作者：

Liu, Zhongda ^{[1
]}

Nakaya, Naoshi ^{[1
]}

Koui, Yuuji ^{[1
]}

机构：

[1] Iwate Univ, Grad Sch Engn, Morioka, Iwate 0208551, Japan

来源：

IEICE TRANSACTIONS ON FUNDAMENTALS OF ELECTRONICS COMMUNICATIONS AND COMPUTER SCIENCES | 2009年 / E92A卷 / 01期

关键词：

computer virus; unknown virus; static analysis technology; similarity;

D O I：

10.1587/transfun.E92.A.190

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

New computer viruses are continually being generated and they cause damage all over the world. In general, current anti-virus software detects viruses by matching a pattern based on the signature; thus, unknown viruses without any signature cannot be detected. Although there are some static analysis technologies that do not depend on signatures, virus writers often use code obfuscation techniques, which make it difficult to execute a code analysis. As is generally known, unknown viruses and known viruses share a common feature. In this paper we propose a new static analysis technology that can circumvent code obfuscation to extract the common feature and detect unknown viruses based on similarity. The results of evaluation experiments demonstrated that this technique is able to detect unknown viruses without false positives.

引用

页码：190 / 196

页数：7

共 50 条

[41] THE SCOURGE OF COMPUTER VIRUSES
MARSHALL, E
[J]. SCIENCE, 1988, 240 (4849) : 133 - 134
[42] COMBATING COMPUTER VIRUSES
RIVERA, A
[J]. SCAT 89 : SMART CARD APPLICATIONS AND TECHNOLOGY / ASIT 89 : ADVANCED SECURITY AND IDENTIFICATION TECHNOLOGY: CONFERENCE PROCEEDINGS, 1989, : B69 - B77
[43] COMPUTER VIRUSES AND THE LAW
HUGHES, G
[J]. SEARCH, 1993, 24 (03): : 84 - 85
[44] Unknown Malicious Code Detection Based on Bayesian
Lai, Yingxu
Liu, Zhenghui
[J]. CEIS 2011, 2011, 15
[45] COMPUTER VIRUSES - COMMENT
DUMSHA, T
[J]. JOURNAL OF THE AMERICAN DENTAL ASSOCIATION, 1992, 123 (11): : 12 - 12
[46] Fighting computer viruses
Kephart, JO
Sorkin, GB
Chess, DM
White, SR
[J]. SCIENTIFIC AMERICAN, 1997, 277 (05) : 88 - 93
[47] Type-based detection for unknown channels
Johnson, DH
Lee, YK
Kelly, OE
Pistole, JL
[J]. 1996 IEEE INTERNATIONAL CONFERENCE ON ACOUSTICS, SPEECH, AND SIGNAL PROCESSING, CONFERENCE PROCEEDINGS, VOLS 1-6, 1996, : 2475 - 2478
[48] COMPUTER VIRUSES - AN OVERVIEW
MARMION, D
[J]. LIBRARY SOFTWARE REVIEW, 1990, 9 (03): : 139 - 144
[49] SHAREWARE AND COMPUTER VIRUSES
GREENBERG, RM
[J]. ABSTRACTS OF PAPERS OF THE AMERICAN CHEMICAL SOCIETY, 1990, 200 : 3 - CHAS
[50] A history of computer viruses: Three special viruses
Highland, HJ
[J]. COMPUTERS & SECURITY, 1997, 16 (05) : 430 - 438

← 1 2 3 4 5 →