Novel Malware Clustering System Based on Kernel Data Structure
Journal Title: IOSR Journals (IOSR Journal of Computer Engineering) - Year 2015, Vol 17, Issue 6
Abstract
Abstract : An operating system kernel is the prime of system software, responsible for the integrity and conventional computer system’s operations. Traditional malware detection approaches have based on the codecentricaspects of malicious programs, e.g. injection of unauthorized code or the control flow patterns of malware programs. In response to these malware detection strategies, modern malware focus on advanced techniques such as reusing existing code or complicated malware code to circumvent detection. A new perspective is introduced to detect malware which is different from code-centric approaches. The data centric malware defense architecture (DMDA) is introduced which models and detects malware behavior. This architecture is based on properties of the kernel data objects that are targeted during malware attacks. This architecture requires external monitoring. External monitor resides outside the monitored kernel and ensures temper-resistance. This architecture consists of three core system components that enable inspection of the kernel data properties and depending upon these properties from malware cluster. The system clusters malware depending upon the kernel data objects.
Authors and Affiliations
Bhandare Trupti Vasantrao , Pramod B. Mali
Keywords
Related Articles
- EP ID EP128051
- DOI -
- Views 119
- Downloads 0
Growth and Development Strategy of It Software and Service Industry
The Effect Of Varying Key Length On A Vigenère Cipher
Abstract: Vigenère cipher is one of the polyalphabetic substitution ciphers. Its weakness is the key repetition.To overcome this weakness there are many researchesgoing on to modify the key generation. In this pape...
Enhancing Security Of Publish/Subscribe System Using Identity Based Encryption Model
Abstract: In a content based publish subscribe system providing security related to the events or messages and subscriptions is very difficult. This paper presents approach to provide security in a Broker-less Publish/Su...
Examining Routing Methods and the Role of Neural Network in Wireless Sensor Networks.
Abstract: A wireless sensor network is a set of numerous sensor networks with small dimensions and limited computing and tele-communicative capabilities used for collecting and transferring data from one environment towa...
ID3 Derived Fuzzy Rules for Predicting the Students AcedemicPerformance
Abstract: This paper presents a technique to use ID3 decision rules to produce fuzzy rules to get the optimizeprediction of the students academic performance. In this paper, a the student administrative data for a...