收录:
摘要:
The existing malicious code detection algorithms which are based on individual behaviors have some drawbacks. In this paper we present a new malicious code detection algorithm based on behavior characteristics by importing improved attack tree model to describe the entity relationships during the malicious code execution time. It is named IBC-DA. The experiments result shows that the proposed algorithm works in most cases of detection and only has minor errors in few conditions. This algorithm has very positive sense for unknown malicious code detection.
关键词:
通讯作者信息:
电子邮件地址:
来源 :
Acta Electronica Sinica
ISSN: 0372-2112
年份: 2009
期: 4
卷: 37
页码: 696-700
归属院系: