Title :
A Novel Testbed for Detection of Malicious Software Functionality
Author_Institution :
Dept. of Software Eng., Safety & Security, SINTEF ICT, Trondheim
Abstract :
Behavioural software analysis is suggested by several research communities as a principle to complement the traditional signature-based anti-virus tools. This paper presents a novel open-source testbed for behavioural software analysis, designed to meet current trends in the malware community by allowing controlled access to the Internet in the analysis phase. General malware detection theories are studied and their principles combined to provide a powerful software analysis environment. A novel way of using honeypot technology is proposed to build a testbed that is able to analyse current threats.
Keywords :
invasive software; public domain software; behavioural software analysis; honeypot technology; malicious software functionality detection; malware detection; signature-based antivirus tools; Application software; Availability; Internet; Open source software; Peer to peer computing; Security; Software engineering; Software safety; Software testing; Software tools; behavioural analysis; honeypot; malware; testbed;
Conference_Titel :
Availability, Reliability and Security, 2008. ARES 08. Third International Conference on
Conference_Location :
Barcelona
Print_ISBN :
978-0-7695-3102-1
DOI :
10.1109/ARES.2008.113
