Hybrid Analysis Technique to detect Advanced Persistent Threats

Advanced persistent threats (APT) are major threats in the field of system and network security. They are extremely stealthy and use advanced evasion techniques like packing and behaviour obfuscation to hide their malicious behaviour and evade the detection methods. Existing behavior-based detection technique fails to detect the APTs due to its high persistence mechanism and sophisticated code nature. Hence, a novel hybrid analysis technique using Behavior based Sandboxing approach is proposed. The proposed technique consists of four phases namely, Static, Dynamic, Memory and System state analysis. Initially, static analysis is performed on the sample which involves packer detection and signature verification. If the sample is found stealthy and remains undetected, then it is executed inside a sandbox environment to analyze its behavior. Further, memory analysis is performed to extract memory artefacts of the current system state. Finally, system state analysis is performed by correlating clean system state and infected system state to determine whether the system is compromised

Download Full-text

Weight Acceleration Based Neural Network Design Method For Energy System State Analysis

2019 IEEE Innovative Smart Grid Technologies - Asia (ISGT Asia) ◽

10.1109/isgt-asia.2019.8881704 ◽

2019 ◽

Author(s):

Yongheng Pang ◽

Dongsheng Yang ◽

Mingjia Ji ◽

Yueyue Li

Keyword(s):

Neural Network ◽

Network Design ◽

Design Method ◽

Energy System ◽

System State ◽

State Analysis

Download Full-text

Optimising design decision-making for steel structures in fire using a hybrid analysis technique

Fire Safety Journal ◽

10.1016/j.firesaf.2017.03.018 ◽

2017 ◽

Vol 91 ◽

pp. 532-541 ◽

Cited By ~ 3

Author(s):

Obinna Akaa ◽

Anthony Abu ◽

Michael Spearpoint ◽

Sonia Giovinazzi

Keyword(s):

Decision Making ◽

Steel Structures ◽

Design Decision ◽

Hybrid Analysis ◽

Analysis Technique ◽

In Fire

Download Full-text

MALGRA: Machine Learning and N-Gram Malware Feature Extraction and Detection System

Electronics ◽

10.3390/electronics9111777 ◽

2020 ◽

Vol 9 (11) ◽

pp. 1777

Author(s):

Muhammad Ali ◽

Stavros Shiaeles ◽

Gueltoum Bendiab ◽

Bogdan Ghita

Keyword(s):

Machine Learning ◽

Learning Algorithm ◽

Detection System ◽

Malware Detection ◽

Machine Learning Algorithms ◽

Supervised Machine Learning ◽

Detection Methods ◽

Normal Operation ◽

Analysis Technique ◽

N Gram

Detection and mitigation of modern malware are critical for the normal operation of an organisation. Traditional defence mechanisms are becoming increasingly ineffective due to the techniques used by attackers such as code obfuscation, metamorphism, and polymorphism, which strengthen the resilience of malware. In this context, the development of adaptive, more effective malware detection methods has been identified as an urgent requirement for protecting the IT infrastructure against such threats, and for ensuring security. In this paper, we investigate an alternative method for malware detection that is based on N-grams and machine learning. We use a dynamic analysis technique to extract an Indicator of Compromise (IOC) for malicious files, which are represented using N-grams. The paper also proposes TF-IDF as a novel alternative used to identify the most significant N-grams features for training a machine learning algorithm. Finally, the paper evaluates the proposed technique using various supervised machine-learning algorithms. The results show that Logistic Regression, with a score of 98.4%, provides the best classification accuracy when compared to the other classifiers used.

Download Full-text

Relating short-term traffic forecasting to current system state using nonparametric regression

Proceedings. The 7th International IEEE Conference on Intelligent Transportation Systems (IEEE Cat. No.04TH8749) ◽

10.1109/itsc.2004.1398904 ◽

2005 ◽

Cited By ~ 3

Author(s):

R.E. Turochy ◽

B.D. Pierce

Keyword(s):

Nonparametric Regression ◽

Current System ◽

System State ◽

Short Term ◽

Traffic Forecasting

Download Full-text

A Travel Behavior-Based Skip-Stop Strategy Considering Train Choice Behaviors Based on Smartcard Data

Sustainability ◽

10.3390/su11102791 ◽

2019 ◽

Vol 11 (10) ◽

pp. 2791 ◽

Cited By ~ 2

Author(s):

Eun Hak Lee ◽

Inmook Lee ◽

Shin-Hyung Cho ◽

Seung-Young Kho ◽

Dong-Kyu Kim

Keyword(s):

Travel Time ◽

Travel Behavior ◽

Choice Model ◽

Current System ◽

Optimal Solution ◽

Multinomial Logit Model ◽

Gaussian Mixture ◽

Total Travel Time ◽

Facility Condition ◽

Behavior Based

This study analyzes a skip-stop strategy considering four types of train choice behavior with smartcard data. The proposed model aims to minimize total travel time with realistic constraints such as facility condition, operational condition, and travel behavior. The travel time from smartcard data is decomposed by two distributions of the express trains and the local trains using a Gaussian mixture model. The utility parameters of the train choice model are estimated with the decomposed distribution using the multinomial logit model. The optimal solution is derived by a genetic algorithm to designate the express stations of the Bundang line in the Seoul metropolitan area. The results indicate the travel times of the transfer-based strategy and the high ridership-based strategy are estimated to be 21.2 and 19.7 min/person, respectively. Compared to the travel time of the current system, the transfer-based strategy has a 5.8% reduction and the high ridership-based strategy has a 12.2% reduction. For the travel behavior-based strategy, the travel time was estimated to be 18.7 minutes, the ratio of the saved travel time is 17.9%, and the energy consumption shows that the travel behavior-based strategy consumes 305,437 (kWh) of electricity, which is about 12.7% lower compared to the current system.

Download Full-text

Optimization of Chemical Enterprise Facility Layout based on Logistics System State Analysis

Computational Intelligence and Bioinformatics / 755: Modelling, Identification, and Simulation ◽

10.2316/p.2011.755-024 ◽

2011 ◽

Author(s):

Tao Zhao ◽

Tao Lin ◽

Xiaoxin Cheng

Keyword(s):

Facility Layout ◽

System State ◽

Logistics System ◽

State Analysis

Download Full-text

Applications of Infrared Spectroscopy in the Study of Wood Plastic Composites

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.113-116.2003 ◽

2010 ◽

Vol 113-116 ◽

pp. 2003-2006 ◽

Cited By ~ 1

Author(s):

Dong Fang Li ◽

Li Li ◽

Jin Chi Zhou

Keyword(s):

Infrared Spectroscopy ◽

Detection Methods ◽

Wood Plastic Composite ◽

Wood Powder ◽

Spectroscopy Analysis ◽

Filling Materials ◽

Plastic Composite ◽

Plastic Composites ◽

Environmental Friendly ◽

Analysis Technique

Wood plastic composite (WPC) is an environmental-friendly material, which is made of virgin or used wood powder and plastic. It is necessary to find the detection methods of WPC with the development of WPC in further studies. For resolving some problems existing in the study of WPC, this article introduces the application of the Infrared Spectroscopy analysis technique in matrix materials, filling materials, supplementary materials, and production process of WPC and forecast the widely usage of Infrared Reflectance (IR) Spectroscopy in the study of WPC.

Download Full-text