原创力文档基于操作码序列的静态恶意代码检测方法的分析-analysis of static malicious code detection method based on opcode sequence.docxVIP
- 86
- 0
- 约4.19万字
- 约 56页
- 2018-05-18 发布于上海
- 举报
基于操作码序列的静态恶意代码检测方法的分析-analysis of static malicious code detection method based on opcode sequence
AbstractWiththewidespreadofthe networkandthedevelopmentprogressofcomputertechnology,computerinformationsecurityisfacingagreatthreat.Themaliciouscodeisthe culprit.Thegrowth ofmaliciouscodeandthedevelopmentofthetechnology,not onlywill bringmuchinconveniencetohumanlife,butalsomaketheenterprisesanduserssufferhugeeconomiclosses.Somecan evenharm thenationalinformationsecurity.With the development and confrontation of malicious code detection andanti-detectiontechnology,thedailyproductionofalargenumberofnewmaliciouscodesbringstremendouspressurestoanalysts.Today,maliciouscodedetectioncapabilitieshavebeenfarinsufficientfordemand.Maliciouscodedetectiontechnologyisdividedintotwoapproaches,staticanddynamic.Thestaticdetectiongetstheresultbasedonthecontentandstructureofthecode,butthedynamicdetectionisbyexecutingcodeinavirtualenvironment.However,withthedevelopmentofcodeobfuscationtechniques,somestaticdetectionmethodsarefacingachallenge.Somemaliciouscodescanhidetheirmaliciousbehaviorstoevadedetectioninvirtualenvironment.Therefore,howto deal withtheexplosionofmaliciouscode,especiallyinresponsetothevariationsofmaliciouscode,becomesthefocusoftheresearchofmaliciouscodedetectiontechnology.Inthispaper,weproposeanewmethodofstaticmaliciouscodedetectionbasedontheopcodesequences.Thismethodextracts theopcodesequencesthroughthe program’s controlflowgraphasthecharacteristic,whichisdifferentfrom othermethods.Firstly,shell maliciouscodes.Secondly,thedisassemblyofmaliciouscodes,thenbuildtheprogram’scontrolflowgraphbywritingpluginandextractopcodesequences.Thirdly,extractthecharacteristicsusingn-gramalgorithmandselectfeaturesusinginformationgainanddocumentfrequencymethods.Finally,detectthemaliciouscodeusingmachinelearningclassificationalgorithmssuchasK-NearestNeighbor,DecisionTreeandSupportVector Machine.Intheexperiment,we choosethe different numberoffeaturesandothermethodstocomparetheexperimentalresultsbasedonthecorrectrate,therateoffalsepositive,therateoffalsenegative.Itcancome toaconclusionthat
您可能关注的文档
- 基于巴渝地区民间艺术资源的动画创作分析-animation creation analysis based on folk art resources in ba - yu region.docx
- 基于坝区耕地保护的县级土地利用总体规划研究——以芒市为例-study on the overall planning of land use at county level based on farmland protection in dam areas - a case study of mangshi city.docx
- 基于八叉树网格技术的相场法金属凝固过程组织模拟的分析-analysis of microstructure simulation of metal solidification process by phase field method based on octree grid technology.docx
- 基于坝区耕地保护的县级土地利用总体规划分析——以芒市为例-analysis on the overall planning of land use at county level based on the protection of cultivated land in dam areas - a case study of mangshi city.docx
- 基于摆动电弧的厚壁结构焊缝自动跟踪关键技术分析-key technology analysis of automatic tracking of thick-walled structure weld seam based on swinging arc.docx
- 基于半参数方法的西安曲江新区商品住宅特征价格分析-analysis of characteristic price of commercial housing in qujiang new district of xi 'an based on semi-parametric method.docx
- 基于半导体光放大器的红移啁啾特性的研究-study on redshift chirp characteristics based on semiconductor optical amplifier.docx
- 基于半导体激光器自混合干涉效应对振动振幅的测量与分析-measurement and analysis of vibration amplitude based on self-mixing interference effect of semiconductor laser.docx
- 基于半导体光放大器全光高速二进制数据序列识别-all-optical high-speed binary data sequence identification base on semiconductor optical amplifier.docx
- 基于半导体光放大器的新型脉冲激光器的分析-analysis of new pulse laser based on semiconductor optical amplifier.docx
最近下载
- 新解读《DL_T 408—2023电力安全工作规程 发电厂和变电站电气部分》最新解读.docx VIP
- 1.7 有多少名观众 教案 2025-2026学年北师大版数学三年级下册.docx VIP
- 第5章 比亚迪精诚钣喷质量管理体系(A0版).pdf VIP
- 学堂在线《大学生心理健康》课后作业单元考核答案.docx VIP
- 脑出血钻孔引流术后护理要点.pptx VIP
- 抖音美妆类短视频营销策略.pdf VIP
- 热敏罐灸疗法可复制.pdf VIP
- 《过敏性紫癜预防与处理指南(2025)解读》.docx VIP
- SL706-2015水库调度编制导则.pdf VIP
- 《美妆短视频的发展问题研究》文献综述1700字.docx VIP
文档评论(0)