By Topic

Detection of Unknown Malicious Codes Based on Group File Characteristics

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$33 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
InSeog Seo ; Manage. Plannning Div., Nat. Security Res. Inst., Daejeon, South Korea ; InJung Kim ; JangHong Yoon ; JaeCheol Ryou

Malicious codes cause system failures by altering system files on computers or secretly placing Trojan horses within a system, which after a certain period of time steal/destroy key information on a computer or create mass packets. Such malicious codes approach computers by avoiding information protection systems (intrusion blocking/detection systems) that execute defences based on known information. Even if a vaccine program is in operation, the detection and elimination of malicious codes disguised as a patch (update file) and those not recognized by the vaccine program are impossible. Based on the fact that security programs, such as security patches, are applied to a network consisting of multiple computers and those computers on such a network have almost identical file characteristics and structures, this research presents ways to detect and prevent network data theft, computer damage and other network vulnerabilities in advance by isolating executable files infected by malicious codes based on identified group file characteristics.

Published in:

Ubiquitous Information Technologies and Applications (CUTE), 2010 Proceedings of the 5th International Conference on

Date of Conference:

16-18 Dec. 2010