Sciweavers

MMMACNS
2005
Springer

Prevention of Information Attacks by Run-Time Detection of Self-replication in Computer Codes

14 years 5 months ago
Prevention of Information Attacks by Run-Time Detection of Self-replication in Computer Codes
This paper describes a novel approach for preventative protection from both known and previously unknown malicious software. It does not rely on screening the code for signatures of known viruses, but instead it detects attempts by the executable code in question to self-replicate during run time. Self-replication is the common feature of most malicious codes, allowing them to maximize their impact. This approach is an extension of the earlier developed method for detecting previously unknown viruses in script based computer codes. The paper presents a software tool implementing this technique for behavior-based run-time detection and suspension of self-replicating functionality in executable codes for Microsoft Windows operating systems.
Douglas H. Summerville, Victor A. Skormin, Alexand
Added 28 Jun 2010
Updated 28 Jun 2010
Type Conference
Year 2005
Where MMMACNS
Authors Douglas H. Summerville, Victor A. Skormin, Alexander Volynkin, James Moronski
Comments (0)