Development of System for the Automatic Generation of Unknown Virus Extermination Software

2007 International Symposium on Applications and the Internet Pub Date : 2007-01-15 DOI:10.1109/SAINT.2007.12

R. Koike, N. Nakaya, Yuji Koi

{"title":"Development of System for the Automatic Generation of Unknown Virus Extermination Software","authors":"R. Koike, N. Nakaya, Yuji Koi","doi":"10.1109/SAINT.2007.12","DOIUrl":null,"url":null,"abstract":"In recent years, there has been a frequent occurrence of virus-related incidents, including cases where a virus infection has caused the unauthorized release of confidential information. Viruses should be considered a society-level security risk. However, the mainstream approach to addressing a virus is basically to implement countermeasures for the virus after the damage has occurred. Some of these countermeasures are unable to keep up with the current pace at which viruses are occurring. To address this problem, in this research, we developed a system to generate unknown virus extermination software automatically, without any manual operations. The developed system is designed to automatically generate software that detects and exterminates an unknown virus, by using both a dynamic heuristic that uses a virtual PC and a technique to automatically generate a signature from header data in the virus executable. We were able to verify the effectiveness of this system when we conducted experiments to check whether or not an actual virus could be exterminated by a vaccine that was automatically created for the virus with the developed system","PeriodicalId":440345,"journal":{"name":"2007 International Symposium on Applications and the Internet","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-01-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2007 International Symposium on Applications and the Internet","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SAINT.2007.12","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

In recent years, there has been a frequent occurrence of virus-related incidents, including cases where a virus infection has caused the unauthorized release of confidential information. Viruses should be considered a society-level security risk. However, the mainstream approach to addressing a virus is basically to implement countermeasures for the virus after the damage has occurred. Some of these countermeasures are unable to keep up with the current pace at which viruses are occurring. To address this problem, in this research, we developed a system to generate unknown virus extermination software automatically, without any manual operations. The developed system is designed to automatically generate software that detects and exterminates an unknown virus, by using both a dynamic heuristic that uses a virtual PC and a technique to automatically generate a signature from header data in the virus executable. We were able to verify the effectiveness of this system when we conducted experiments to check whether or not an actual virus could be exterminated by a vaccine that was automatically created for the virus with the developed system

查看原文本刊更多论文

未知病毒自动生成杀毒软件系统的开发

近年来，与病毒相关的事件频繁发生，包括病毒感染导致机密信息被未经授权发布的案例。病毒应被视为一种社会层面的安全风险。然而，解决病毒的主流方法基本上是在损害发生后对病毒实施对策。其中一些对策无法跟上当前病毒发生的速度。为了解决这一问题，在本研究中，我们开发了一个系统，自动生成未知病毒的杀毒软件，无需任何人工操作。所开发的系统旨在通过使用虚拟PC的动态启发式和从病毒可执行文件中的头数据自动生成签名的技术，自动生成检测和消灭未知病毒的软件。我们通过实验验证了该系统的有效性，以检查是否可以通过使用开发的系统自动为病毒创建的疫苗来消灭实际的病毒

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2007 International Symposium on Applications and the Internet

自引率

0.00%

发文量