A Sense of 'Danger' for Windows Processes
نویسندگان
چکیده
The sophistication of modern computer malware demands run-time malware detection strategies which are not only efficient but also robust to obfuscation and evasion attempts. In this paper, we investigate the suitability of recently proposed Dendritic Cell Algorithms (DCA), both classical DCA (cDCA) and deterministic DCA (dDCA), for malware detection at run-time. We have collected API call traces of real malware and benign processes running on Windows operating system. We evaluate the accuracy of cDCA and dDCA for classifying between malware and benign processes using API call sequences. Moreover, we also study the effects of antigen multiplier and time-windows on the detection accuracy of both algorithms.
منابع مشابه
Concept drift detection in event logs using statistical information of variants
In recent years, business process management (BPM) has been highly regarded as an improvement in the efficiency and effectiveness of organizations. Extracting and analyzing information on business processes is an important part of this structure. But these processes are not sustainable over time and may change for a variety of reasons, such as the environment and human resources. These changes ...
متن کاملAn Investigation on Elements Creating Sense of Place in Historical Site of Babol
The body of residential complexes is affected by social interactions between residents over time. Of the most important places for social communications are bazaars as the backbone of Iranian cities. Ancient bazaar of Babol in north of Iran contains natural features which makes a special sense of place. This essay tries to answer to how concept of sense of place is presented and what are factor...
متن کاملEmploying Sensor Network to Guide Firefighters in Dangerous Area
In this paper, we intend to focus on the sensor network applications in firefighting. A distributed algorithm is developed for the sensor network to guide firefighters through a burning area. The sensor network models the danger of the area under coverage as obstacles, and has the property to adapt itself against possible changes. The protocol developed, will integrate the artificial potential ...
متن کاملA mathematical model for the electric vehicle routing with time windows considering queuing system at charging stations and alternative paths
Due to many damages that human activities have imposed on the environment, authorities, manufacturers, and industry owners have taken into account the development of supply chain more than ever. One of the most influential and essential human activities in the supply chain are transportation which green vehicles such as electric vehicles (EVs) are expected to generate higher economic and enviro...
متن کاملO16: How Do Concepts of Evolutionary Psychology and Evolutionary Psychiatry Explain Anxiety Disorders?
Our ancestors without fear, worry and anxiety are not our ancestors, as organisms without defense systems were extinct. Therefore, while behavior such as fear and anxiety are useful to prevent harm, the exaggerated form, that is, anxiety disorders, has more costs than benefits. Likewise, while a panic attack is a normal and useful response in the face of life-threatening danger, a panic disorde...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2009