使用深度学习的行为恶意软件检测中的误报缓解

2018 IEEE 14th International Conference on Intelligent Computer Communication and Processing (ICCP) Pub Date : 2018-09-01 DOI:10.1109/ICCP.2018.8516611

Alexru Mihai Lungana-Niculescu, Adrian Colesa, Ciprian Oprișa

{"title":"使用深度学习的行为恶意软件检测中的误报缓解","authors":"Alexru Mihai Lungana-Niculescu, Adrian Colesa, Ciprian Oprișa","doi":"10.1109/ICCP.2018.8516611","DOIUrl":null,"url":null,"abstract":"The malicious software is in a continuous development and the anti-malware technologies are advancing as well to keep up. There are proactive detection technologies, based on the analysis of a sample behavior, that succeed in detecting zero-day malware, the downside being the false positives rate. The current paper proposes an approach for mitigating the false positives by introducing a deep learning classifier. This classifier provides a ’’second opinion’’ for the samples that would have been detected by the current state of the art approach. The proposed approach is able to reduce the false positives rate by 97‥, while only losing 12‥ of the legitimate detection.","PeriodicalId":259007,"journal":{"name":"2018 IEEE 14th International Conference on Intelligent Computer Communication and Processing (ICCP)","volume":"40 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"False Positive Mitigation in Behavioral Malware Detection Using Deep Learning\",\"authors\":\"Alexru Mihai Lungana-Niculescu, Adrian Colesa, Ciprian Oprișa\",\"doi\":\"10.1109/ICCP.2018.8516611\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The malicious software is in a continuous development and the anti-malware technologies are advancing as well to keep up. There are proactive detection technologies, based on the analysis of a sample behavior, that succeed in detecting zero-day malware, the downside being the false positives rate. The current paper proposes an approach for mitigating the false positives by introducing a deep learning classifier. This classifier provides a ’’second opinion’’ for the samples that would have been detected by the current state of the art approach. The proposed approach is able to reduce the false positives rate by 97‥, while only losing 12‥ of the legitimate detection.\",\"PeriodicalId\":259007,\"journal\":{\"name\":\"2018 IEEE 14th International Conference on Intelligent Computer Communication and Processing (ICCP)\",\"volume\":\"40 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 IEEE 14th International Conference on Intelligent Computer Communication and Processing (ICCP)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICCP.2018.8516611\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE 14th International Conference on Intelligent Computer Communication and Processing (ICCP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCP.2018.8516611","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

摘要

恶意软件在不断发展，反恶意软件技术也在不断进步。有一些基于样本行为分析的主动检测技术，可以成功地检测到零日恶意软件，缺点是误报率。本文提出了一种通过引入深度学习分类器来减少误报的方法。该分类器为当前最先进的方法所检测到的样本提供了“第二意见”。所提出的方法能够将误报率降低97‥而只损失12‥合法检测。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

False Positive Mitigation in Behavioral Malware Detection Using Deep Learning

The malicious software is in a continuous development and the anti-malware technologies are advancing as well to keep up. There are proactive detection technologies, based on the analysis of a sample behavior, that succeed in detecting zero-day malware, the downside being the false positives rate. The current paper proposes an approach for mitigating the false positives by introducing a deep learning classifier. This classifier provides a ’’second opinion’’ for the samples that would have been detected by the current state of the art approach. The proposed approach is able to reduce the false positives rate by 97‥, while only losing 12‥ of the legitimate detection.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2018 IEEE 14th International Conference on Intelligent Computer Communication and Processing (ICCP)

自引率

0.00%

发文量