Cargando…
The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures
The continuous growth of malware presents a problem for internet computing due to increasingly sophisticated techniques for disguising malicious code through mutation and the time required to identify signatures for use by antiviral software systems (AVS). Malware modelling has focused primarily on...
| Autores principales: | , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Hindawi Publishing Corporation
2013
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC3747389/ https://www.ncbi.nlm.nih.gov/pubmed/23983644 http://dx.doi.org/10.1155/2013/671096 |
| _version_ | 1782280924136734720 |
|---|---|
| author | Narayanan, Ajit Chen, Yi Pang, Shaoning Tao, Ban |
| author_facet | Narayanan, Ajit Chen, Yi Pang, Shaoning Tao, Ban |
| author_sort | Narayanan, Ajit |
| collection | PubMed |
| description | The continuous growth of malware presents a problem for internet computing due to increasingly sophisticated techniques for disguising malicious code through mutation and the time required to identify signatures for use by antiviral software systems (AVS). Malware modelling has focused primarily on semantics due to the intended actions and behaviours of viral and worm code. The aim of this paper is to evaluate a static structure approach to malware modelling using the growing malware signature databases now available. We show that, if malware signatures are represented as artificial protein sequences, it is possible to apply standard sequence alignment techniques in bioinformatics to improve accuracy of distinguishing between worm and virus signatures. Moreover, aligned signature sequences can be mined through traditional data mining techniques to extract metasignatures that help to distinguish between viral and worm signatures. All bioinformatics and data mining analysis were performed on publicly available tools and Weka. |
| format | Online Article Text |
| id | pubmed-3747389 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2013 |
| publisher | Hindawi Publishing Corporation |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-37473892013-08-27 The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures Narayanan, Ajit Chen, Yi Pang, Shaoning Tao, Ban ScientificWorldJournal Research Article The continuous growth of malware presents a problem for internet computing due to increasingly sophisticated techniques for disguising malicious code through mutation and the time required to identify signatures for use by antiviral software systems (AVS). Malware modelling has focused primarily on semantics due to the intended actions and behaviours of viral and worm code. The aim of this paper is to evaluate a static structure approach to malware modelling using the growing malware signature databases now available. We show that, if malware signatures are represented as artificial protein sequences, it is possible to apply standard sequence alignment techniques in bioinformatics to improve accuracy of distinguishing between worm and virus signatures. Moreover, aligned signature sequences can be mined through traditional data mining techniques to extract metasignatures that help to distinguish between viral and worm signatures. All bioinformatics and data mining analysis were performed on publicly available tools and Weka. Hindawi Publishing Corporation 2013-08-01 /pmc/articles/PMC3747389/ /pubmed/23983644 http://dx.doi.org/10.1155/2013/671096 Text en Copyright © 2013 Ajit Narayanan et al. https://creativecommons.org/licenses/by/3.0/ This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. |
| spellingShingle | Research Article Narayanan, Ajit Chen, Yi Pang, Shaoning Tao, Ban The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_full | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_fullStr | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_full_unstemmed | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_short | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_sort | effects of different representations on static structure analysis of computer malware signatures |
| topic | Research Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC3747389/ https://www.ncbi.nlm.nih.gov/pubmed/23983644 http://dx.doi.org/10.1155/2013/671096 |
| work_keys_str_mv | AT narayananajit theeffectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT chenyi theeffectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT pangshaoning theeffectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT taoban theeffectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT narayananajit effectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT chenyi effectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT pangshaoning effectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT taoban effectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures |