Sciweavers

Free Online Productivity Tools i2Speak i2Symbol i2OCR iTex2Img iWeb2Print iWeb2Shot i2Type iPdf2Split iPdf2Merge i2Bopomofo i2Arabic i2Style i2Image i2PDF iLatex2Rtf Sci2ools

11

RAID
2010
Springer

favoriteEmaildiscussreport

213views Computer Networks» more RAID 2010»

Using IRP for Malware Detection

13 years 2 months ago

Using IRP for Malware Detection

Download www.raid2010.org

Abstract. Run-time malware detection strategies are eﬃcient and robust, which get more and more attention. In this paper, we use I/O Request Package (IRP) sequences for malware detection. N-gram will be used to analyze IRP sequences for feature extraction. Integrated use of Negative Selection Algorithm (NSA) and Positive Selection Algorithm (PSA), we get more than 96% true positive rate and 0% false positive rate, by a selection of n-gram sequences which only exist in malware IRP sequences.

FuYong Zhang, DeYu Qi, JingLin Hu

Real-time Traffic

Computer Networks | IRP Sequences | Malware Detection | RAID 2010 | Sequences |

claim paper

Related Content

» Malware Obfuscation Techniques A Brief Survey

» Proactive Detection of Computer Worms Using Model Checking

» Static Analysis of Executables for Collaborative Malware Detection on Android

» SemanticsAware Malware Detection

» Automatic analysis of malware behavior using machine learning

» Static Analyzer of Vicious Executables SAVE

» Malware Analysis with Tree Automata Inference

» Detecting Selfmutating Malware Using ControlFlow Graph Matching

» Automatic Generation of Remediation Procedures for Malware Infections

Post Info
More Details (n/a)

Added	30 Jan 2011
Updated	30 Jan 2011
Type	Journal
Year	2010
Where	RAID
Authors	FuYong Zhang, DeYu Qi, JingLin Hu

Comments (0)