Please use this identifier to cite or link to this item:
https://hdl.handle.net/10356/98910
Full metadata record
DC Field | Value | Language |
---|---|---|
dc.contributor.author | Chandramohan, Mahinthan | en |
dc.contributor.author | Tan, Hee Beng Kuan | en |
dc.contributor.author | Shar, Lwin Khin | en |
dc.date.accessioned | 2013-07-31T04:06:23Z | en |
dc.date.accessioned | 2019-12-06T20:01:03Z | - |
dc.date.available | 2013-07-31T04:06:23Z | en |
dc.date.available | 2019-12-06T20:01:03Z | - |
dc.date.copyright | 2012 | en |
dc.date.issued | 2012 | en |
dc.identifier.citation | Chandramohan, M., Tan, H. B. K., & Shar, L. K. (2012). Scalable malware clustering through coarse-grained behavior modeling. Proceedings of the ACM SIGSOFT 20th International Symposium on the Foundations of Software Engineering - FSE '12. | en |
dc.identifier.uri | https://hdl.handle.net/10356/98910 | - |
dc.description.abstract | Anti-malware vendors receive several thousand new malware (malicious software) variants per day. Due to large volume of malware samples, it has become extremely important to group them based on their malicious characteristics. Grouping of malware variants that exhibit similar behavior helps to generate malware signatures more efficiently. Unfortunately, exponential growth of new malware variants and huge-dimensional feature space, as used in existing approaches, make the clustering task very challenging and difficult to scale. Furthermore, malware behavior modeling techniques proposed in the literature do not scale well, where malware feature space grows in proportion with the number of samples under examination. In this paper, we propose a scalable malware behavior modeling technique that models the interactions between malware and sensitive system resources in a coarse-grained manner. Coarse-grained behavior modeling enables us to generate malware feature space that does not grow in proportion with the number of samples under examination. A preliminary study shows that our approach generates 289 times less malware features and yet improves the average clustering accuracy by 6.20% comparing to a state-of-the-art malware clustering technique. | en |
dc.language.iso | en | en |
dc.title | Scalable malware clustering through coarse-grained behavior modeling | en |
dc.type | Conference Paper | en |
dc.contributor.school | School of Electrical and Electronic Engineering | en |
dc.contributor.conference | International Symposium on the Foundations of Software Engineering (20th : 2012 : Cary, USA) | en |
dc.identifier.doi | 10.1145/2393596.2393627 | en |
item.fulltext | No Fulltext | - |
item.grantfulltext | none | - |
Appears in Collections: | EEE Conference Papers |
SCOPUSTM
Citations
20
16
Updated on Mar 20, 2024
Page view(s) 50
535
Updated on Mar 28, 2024
Google ScholarTM
Check
Altmetric
Items in DR-NTU are protected by copyright, with all rights reserved, unless otherwise indicated.