Generating Behavior-based Malware Detection Models with Genetic Programming

被引:0
|
作者
Wuechner, Tobias [1 ]
Ochoa, Martin [2 ]
Lovat, Enrico [1 ]
Pretschner, Alexander [1 ]
机构
[1] Tech Univ Munich, Munich, Germany
[2] Singapore Univ Technol & Design, Singapore, Singapore
来源
2016 14TH ANNUAL CONFERENCE ON PRIVACY, SECURITY AND TRUST (PST) | 2016年
关键词
D O I
暂无
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Malware remains a major IT security threat and current detection approaches struggle to cope with a professionalized mal ware development industry. We propose the use of genetic programming to generate effective and robust malware detection models which we call FrankenMods. These are sets of graph metrics that capture characteristic mal ware behavior. Evolution of FrankenMods with good detection capabilities yields continuously improved detection effectiveness. FrankenMods are operationalized by evaluating them on quantitative data flow graphs that model mal ware behavior as data flows between system resources caused by issued system calls. We show that FrankenMods are substantially more robust and effective than a state-of-the-art graph metric-based detection approach.
引用
收藏
页数:6
相关论文
共 50 条
  • [21] Malware Detection Using Genetic Programming
    Thi Anh Le
    Thi Huong Chu
    Quang Uy Nguyen
    Xuan Hoai Nguyen
    [J]. 2014 SEVENTH IEEE SYMPOSIUM ON COMPUTATIONAL INTELLIGENCE FOR SECURITY AND DEFENSE APPLICATIONS (CISDA), 2014, : 67 - 72
  • [22] A Framework for Behavior-Based Malware Analysis in the Cloud
    Martignoni, Lorenzo
    Paleari, Roberto
    Bruschi, Danilo
    [J]. INFORMATION SYSTEMS SECURITY, PROCEEDINGS, 2009, 5905 : 178 - +
  • [23] A Behavior-based Mobile Malware Detection Model in Software-Defined Networking
    Tri-Hai Nguyen
    Yoo, Myungsik
    [J]. 2017 INTERNATIONAL CONFERENCE ON INFORMATION SCIENCE AND COMMUNICATIONS TECHNOLOGIES (ICISCT) - APPLICATIONS, TRENDS AND OPPORTUNITIES, 2017,
  • [24] BejaGNN: behavior-based Java malware detection via graph neural network
    Pengbin Feng
    Li Yang
    Di Lu
    Ning Xi
    Jianfeng Ma
    [J]. The Journal of Supercomputing, 2023, 79 : 15390 - 15414
  • [25] Improving malware detection response time with behavior-based statistical analysis techniques
    Prelipcean, Dumitru Bogdan
    Popescu, Adrian Stefan
    Gavrilut, Dragos Teodor
    [J]. 2015 17TH INTERNATIONAL SYMPOSIUM ON SYMBOLIC AND NUMERIC ALGORITHMS FOR SCIENTIFIC COMPUTING (SYNASC), 2016, : 232 - 239
  • [26] Three-phase behavior-based detection and classification of known and unknown malware
    Lin, Ying-Dar
    Lai, Yuan-Cheng
    Lu, Chun-Nan
    Hsu, Peng-Kai
    Lee, Chia-Yin
    [J]. SECURITY AND COMMUNICATION NETWORKS, 2015, 8 (11) : 2004 - 2015
  • [27] Automated Behavior-based Malice Scoring of Ransomware Using Genetic Programming
    Abbasi, Muhammad Shabbir
    Al-Sahaf, Harith
    Welch, Ian
    [J]. 2021 IEEE SYMPOSIUM SERIES ON COMPUTATIONAL INTELLIGENCE (IEEE SSCI 2021), 2021,
  • [28] Monet: A User-Oriented Behavior-Based Malware Variants Detection System for Android
    Sun, Mingshen
    Li, Xiaolei
    Lui, John C. S.
    Ma, Richard T. B.
    Liang, Zhenkai
    [J]. IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, 2017, 12 (05) : 1103 - 1112
  • [29] Functional Programming of Behavior-Based Systems
    Ian Douglas Horswill
    [J]. Autonomous Robots, 2000, 9 : 83 - 93
  • [30] Functional programming of behavior-based systems
    Horswill, ID
    [J]. AUTONOMOUS ROBOTS, 2000, 9 (01) : 83 - 93
12345