Sciweavers

Share
IEEEARES
2010
IEEE

Detection of Spyware by Mining Executable Files

11 years 6 months ago
Detection of Spyware by Mining Executable Files
Spyware represents a serious threat to confidentiality since it may result in loss of control over private data for computer users. This type of software might collect the data and send it to a third party without informed user consent. Traditionally two approaches have been presented for the purpose of spyware detection: Signature-based Detection and Heuristic-based Detection. These approaches perform well against known Spyware but have not been proven to be successful at detecting new spyware. This paper presents a Spyware detection approach by using Data Mining (DM) technologies. Our approach is inspired by DM-based malicious code detectors, which are known to work well for detecting viruses and similar software. However, this type of detector has not been investigated in terms of how well it is able to detect spyware. We extract binary features, called n-grams, from both spyware and legitimate software and apply five different supervised learning algorithms to train classifiers tha...
Raja Khurram Shahzad, Syed Imran Haider, Niklas La
Added 09 Jul 2010
Updated 09 Jul 2010
Type Conference
Year 2010
Where IEEEARES
Authors Raja Khurram Shahzad, Syed Imran Haider, Niklas Lavesson
Comments (0)
books