文章基本信息

标题：A Study on Behavioral Malware Detection by Using Delay Tolerant Networks
本地全文：下载
作者：K.Ravikumar ; V. Vinothkumar
期刊名称：International Journal of Computer Techniques
电子版ISSN：2394-2231
出版年度：2015
卷号：2
期号：5
页码：30-33
语种：English
出版社：International Research Group - IRG
摘要：The delay-tolerant-network (DTN) model is becoming a via communication alternative to the traditional infrastructural model for modern mobile consumer electronics equipped with short-range communication technologies such as Bluetooth, NFC, and Wi-Fi Direct. Proximity malware is a class of malware that exploits the opportunistic contacts and distributed nature of DTNs for propagation. Behavioral characterization of malware is an effective alternative to pattern attaching in detecting malware,especially when dealing with polymorphic or obfuscated malware. In this paper, we first propose a general behavioral characterization of proximity malware which based on Naive Bayesian model. We identify two unique challenges for extending Bayesian malware detection to DTNs and propose a simple yet effective method, look-ahead, to address the challenges.Furthermore, we propose two extensions to look-ahead, dogmatic filtering and adaptive look-ahead, to address the challenge of “malicious nodes sharing false evidence”. Real mobile network traces are used to verify the effectiveness of the proposed methods.