Sciweavers

PST
2004

Detection of New Malicious Code Using N-grams Signatures

14 years 1 months ago
Detection of New Malicious Code Using N-grams Signatures
Signature-based malicious code detection is the standard technique in all commercial anti-virus software. This method can detect a virus only after the virus has appeared and caused damage. Signature-based detection performs poorly when attempting to identify new viruses. Motivated by the standard signature-based technique for detecting viruses, and a recent successful text classification method, n-grams analysis, we explore the idea of automatically detecting new malicious code. We employ n-grams analysis to automatically generate signatures from malicious and benign software collections. The n-gramsbased signatures are capable of classifying unseen benign and malicious code. The datasets used are large compared to earlier applications of n-grams analysis.
Tony Abou-Assaleh, Nick Cercone, Vlado Keselj, Ray
Added 31 Oct 2010
Updated 31 Oct 2010
Type Conference
Year 2004
Where PST
Authors Tony Abou-Assaleh, Nick Cercone, Vlado Keselj, Ray Sweidan
Comments (0)