Characterizing and Detecting Virus Replication

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Jose Andre Morales Articles by Peter J. Clarke Articles by Yi Deng

Third International Conference on Systems (icons 2008)

April 13-April 18

ISBN: 978-0-7695-3105-2

	ASCII Text	x
	Jose Andre Morales, Peter J. Clarke, Yi Deng, "Characterizing and Detecting Virus Replication," Systems, Second International Conference on, pp. 214-219, Third International Conference on Systems (icons 2008), 2008.

	BibTex	x
	@article{ 10.1109/ICONS.2008.37, author = {Jose Andre Morales and Peter J. Clarke and Yi Deng}, title = {Characterizing and Detecting Virus Replication}, journal ={Systems, Second International Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3105-2}, pages = {214-219}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICONS.2008.37}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Systems, Second International Conference on TI - Characterizing and Detecting Virus Replication SN - 978-0-7695-3105-2 SP214 EP219 A1 - Jose Andre Morales, A1 - Peter J. Clarke, A1 - Yi Deng, PY - 2008 KW - virus detection KW - behavior based self reference KW - replication security VL - 0 JA - Systems, Second International Conference on ER -

Jose Andre Morales

Peter J. Clarke

Yi Deng

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICONS.2008.37

Newly released computer viruses are spreading faster than ever before and current signature based detection do not protect against these unknown viruses.??This paper presents a characterization of virus replication. Two detection models are developed, one using operation sequence matching and the other using frequency measures. The research shows virus replication can be characterized and used to detect known and unknown viruses with minimal false negatives. In our testing using operation sequence matching, over 250 viruses were detected with 43 subsequences. Detection of 130 viruses, 45% of all tested viruses, occured with the replication sequence of just one virus. Our testing using frequency measures detected all test viruses with no false negatives.

Index Terms:

virus detection, behavior based self reference, replication security

Citation:

Jose Andre Morales, Peter J. Clarke, Yi Deng, "Characterizing and Detecting Virus Replication," icons, pp.214-219, Third International Conference on Systems (icons 2008), 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.