Correlation Analysis of Dataset Size and Accuracy of the CNN-based Malware Detection Algorithm

This paper presents SmartMal—a novel service-oriented behavioral malware detection framework for vehicular and mobile devices. The highlight of SmartMal is to introduce service-oriented architecture (SOA) concepts and behavior analysis into the malware detection paradigms. The proposed framework relies on client-server architecture, the client continuously extracts various features and transfers them to the server, and the server’s main task is to detect anomalies using state-of-art detection algorithms. Multiple distributed servers simultaneously analyze the feature vector using various detectors and information fusion is used to concatenate the results of detectors. We also propose a cycle-based statistical approach for mobile device anomaly detection. We accomplish this by analyzing the users’ regular usage patterns. Empirical results suggest that the proposed framework and novel anomaly detection algorithm are highly effective in detecting malware on Android devices.

Download Full-text

A Malware Detection Algorithm Based on Multi-view Fusion

Lecture Notes in Computer Science - Neural Information Processing. Models and Applications ◽

10.1007/978-3-642-17534-3_32 ◽

2010 ◽

pp. 259-266 ◽

Cited By ~ 5

Author(s):

Shanqing Guo ◽

Qixia Yuan ◽

Fengbo Lin ◽

Fengyu Wang ◽

Tao Ban

Keyword(s):

Malware Detection ◽

Detection Algorithm

Download Full-text

An Outlier Detection Algorithm Based on Cross-Correlation Analysis for Time Series Dataset

IEEE Access ◽

10.1109/access.2018.2870151 ◽

2018 ◽

Vol 6 ◽

pp. 53593-53610 ◽

Cited By ~ 4

Author(s):

Hui Lu ◽

Yaxian Liu ◽

Zongming Fei ◽

Chongchong Guan

Keyword(s):

Time Series ◽

Correlation Analysis ◽

Outlier Detection ◽

Cross Correlation ◽

Detection Algorithm ◽

Time Series Dataset ◽

Cross Correlation Analysis

Download Full-text

Estimation of malware detection algorithm accuracy based on anomaly search in program behavior

Scientific and technical journal of information technologies mechanics and optics ◽

10.17586/2226-1494-2016-16-5-823-830 ◽

2016 ◽

pp. 823-830

Author(s):

M.V. Baklanovsky ◽

A.R. Khanov ◽

P.A. Lozov ◽

K.M. Komarov

Keyword(s):

Malware Detection ◽

Detection Algorithm ◽

Program Behavior

Download Full-text

A Preemptive Behaviour-based Malware Detection through Analysis of API Calls Sequence Inspired by Human Immune System

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i4.15.21431 ◽

2018 ◽

Vol 7 (4.15) ◽

pp. 113 ◽

Cited By ~ 1

Author(s):

Fadzli Marhusin ◽

Christopher John Lokan

Keyword(s):

Immune System ◽

Malware Detection ◽

Detection Algorithm ◽

Knowledge Bases ◽

Human Immune System ◽

Detection Mechanism ◽

Data Mining Approach ◽

Early Beginning ◽

Detection Stage ◽

Human Immune

This study detects malware as it begins to execute and propose a data mining approach for malware detection using sequences of API calls in a Windows environment. We begin with some background of the study and the influence of Human Immune System in our detection mechanism, i.e. the Natural Killer (NK) and Suppressor (S) Cells. We apply the K = 10 crosses fold data validation against the dataset. We use the n-grams technique to form the data for the purpose of establishing the Knowledge Bases and for the detection stage. The detection algorithm integrates the NK and S to work in unison and statistically determine on whether a particular executable deemed as benign or malicious. The results show that we could preemptively detect malware and benign programs at the very early beginning of their execution upon inspecting the first few hundreds of the targeted API Calls. Depending on the speed of the processor and the ongoing running processes, this could just happen in a split of a second or a few. This research is as part of our initiative to build a behaviour based component of a cyber defence and this will enhance our readiness to combat zero-day attacks.

Download Full-text