• DocumentCode
    3699186
  • Title

    Dynamic program behavior model based on layered dependencies

  • Author

    Chao Fan;Rongcai Zhao;Zheng Shan;Hongbo Cai

  • Author_Institution
    State Key Laboratory of Mathematical Engineering and Advanced Computing, Zhengzhou Henan 450001, China
  • fYear
    2015
  • Firstpage
    533
  • Lastpage
    536
  • Abstract
    It is effective to ensure the credibility of program to monitor the real-time status in the whole process when the program is been executed. Aiming at the problem of high convexity of feature extracting and interaction between false positive and false negative rate in current study, this paper proposed one kind of program behaviour model based on the dependencies. It constituted variable-length system call sequences according to the sifting and relevance analysing of system calls generated from running program. We can get the feature sequence through layered analysing, aggregation and simplification. Experiments on the selected samples show that the model is feasible and has better control on false positive and false negative rate.
  • Keywords
    "Feature extraction","Instruments","Malware","Intrusion detection","Kernel","Databases"
  • Publisher
    ieee
  • Conference_Titel
    Software Engineering and Service Science (ICSESS), 2015 6th IEEE International Conference on
  • ISSN
    2327-0586
  • Print_ISBN
    978-1-4799-8352-0
  • Electronic_ISBN
    2327-0594
  • Type

    conf

  • DOI
    10.1109/ICSESS.2015.7339114
  • Filename
    7339114
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3699186