The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures
The continuous growth of malware presents a problem for internet computing due to increasingly sophisticated techniques for disguising malicious code through mutation and the time required to identify signatures for use by antiviral software systems (AVS). Malware modelling has focused primarily on...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2013-01-01
|
| Series: | The Scientific World Journal |
| Online Access: | http://dx.doi.org/10.1155/2013/671096 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832561046093561856 |
|---|---|
| author | Ajit Narayanan Yi Chen Shaoning Pang Ban Tao |
| author_facet | Ajit Narayanan Yi Chen Shaoning Pang Ban Tao |
| author_sort | Ajit Narayanan |
| collection | DOAJ |
| description | The continuous growth of malware presents a problem for internet computing due to increasingly sophisticated techniques for disguising malicious code through mutation and the time required to identify signatures for use by antiviral software systems (AVS). Malware modelling has focused primarily on semantics due to the intended actions and behaviours of viral and worm code. The aim of this paper is to evaluate a static structure approach to malware modelling using the growing malware signature databases now available. We show that, if malware signatures are represented as artificial protein sequences, it is possible to apply standard sequence alignment techniques in bioinformatics to improve accuracy of distinguishing between worm and virus signatures. Moreover, aligned signature sequences can be mined through traditional data mining techniques to extract metasignatures that help to distinguish between viral and worm signatures. All bioinformatics and data mining analysis were performed on publicly available tools and Weka. |
| format | Article |
| id | doaj-art-d65ea6e9de184d309f37bb98a950ec0c |
| institution | Kabale University |
| issn | 1537-744X |
| language | English |
| publishDate | 2013-01-01 |
| publisher | Wiley |
| record_format | Article |
| series | The Scientific World Journal |
| spelling | doaj-art-d65ea6e9de184d309f37bb98a950ec0c2025-02-03T01:26:12ZengWileyThe Scientific World Journal1537-744X2013-01-01201310.1155/2013/671096671096The Effects of Different Representations on Static Structure Analysis of Computer Malware SignaturesAjit Narayanan0Yi Chen1Shaoning Pang2Ban Tao3School of Computing and Mathematical Sciences, Auckland University of Technology, Auckland 1010, New ZealandSchool of Computing and Mathematical Sciences, Auckland University of Technology, Auckland 1010, New ZealandDepartment of Computing, Unitec Institute of Technology, Auckland 1025, New ZealandNational Institute of Information and Communications Technology, Tokyo 184-8795, JapanThe continuous growth of malware presents a problem for internet computing due to increasingly sophisticated techniques for disguising malicious code through mutation and the time required to identify signatures for use by antiviral software systems (AVS). Malware modelling has focused primarily on semantics due to the intended actions and behaviours of viral and worm code. The aim of this paper is to evaluate a static structure approach to malware modelling using the growing malware signature databases now available. We show that, if malware signatures are represented as artificial protein sequences, it is possible to apply standard sequence alignment techniques in bioinformatics to improve accuracy of distinguishing between worm and virus signatures. Moreover, aligned signature sequences can be mined through traditional data mining techniques to extract metasignatures that help to distinguish between viral and worm signatures. All bioinformatics and data mining analysis were performed on publicly available tools and Weka.http://dx.doi.org/10.1155/2013/671096 |
| spellingShingle | Ajit Narayanan Yi Chen Shaoning Pang Ban Tao The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures The Scientific World Journal |
| title | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_full | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_fullStr | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_full_unstemmed | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_short | The Effects of Different Representations on Static Structure Analysis of Computer Malware Signatures |
| title_sort | effects of different representations on static structure analysis of computer malware signatures |
| url | http://dx.doi.org/10.1155/2013/671096 |
| work_keys_str_mv | AT ajitnarayanan theeffectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT yichen theeffectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT shaoningpang theeffectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT bantao theeffectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT ajitnarayanan effectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT yichen effectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT shaoningpang effectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures AT bantao effectsofdifferentrepresentationsonstaticstructureanalysisofcomputermalwaresignatures |