NewMalicious CodeDetection Basedon N-gramAnalysis andRoughSetTheory

Jianping Yin,Jingbo Hao,Shulin Wang,Dingxing Zhang,Wensheng Tang

NewMalicious CodeDetection Basedon N-gramAnalysis andRoughSetTheory

2006

Jianping Yin
Jingbo Hao
Shulin Wang
Dingxing Zhang
Wensheng Tang

Motivated by thestandard signature-based techniquefor detecting viruses, weexplore theideaof automatically detecting malicious codeusing theNgramanalysis. Themethodisbasedonstatistical learning andnotstrictly dependent oncertain viruses. Wepropose theuseofroughsettheory (RST)to reducethefeature dimension. An efficient implementation tocalculate relative core, basedon positive region definition ispresented also. Thek nearest neighbor (KNN) andsupport vector machine (SVM)classifiers areusedtocategorize aprogram as either normal orabnormal. Theexperimental results arepromising andshowthattheproposed scheme results inlowrate offalse positive.

Keywords:

k-nearest neighbors algorithm
Support vector machine
Machine learning
Artificial intelligence
Pattern recognition
Mathematics
Speech recognition

Correction
Source
Cite
Save
Machine Reading By IdeaReader

References

Citations