Ye Liang, Jingzhang Liang, Limei Huang, Yueping Xian
{"title":"基于有效特征选择优化算法的非线性支持向量机木马检测模型","authors":"Ye Liang, Jingzhang Liang, Limei Huang, Yueping Xian","doi":"10.1109/ITA.2013.38","DOIUrl":null,"url":null,"abstract":"There are two major issues in the current Trojan detection system: some of them can not detect unknown Trojans and many of them have low detection rate. To solve these problems, a Trojan horse detection model of nonlinear SVM based on an effective feature selection optimization algorithm is presented in this paper. In this model, we extract the API (application program interface) calls sequence of an executable program as a feature vector and use the feature selection optimization algorithm to choose High-sensitive characteristics which are quantized into data recognized by SVM to build the SVM feature vector library. SVM classifier is trained with the training dataset to find the optimal separating hyper plane. Experiment results demonstrate that this model named PMI-SVM is more effective and steady.","PeriodicalId":285687,"journal":{"name":"2013 International Conference on Information Technology and Applications","volume":"33 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2013-11-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Trojan Detection Model of Nonlinear SVM Based on an Effective Feature Selection Optimization Algorithm\",\"authors\":\"Ye Liang, Jingzhang Liang, Limei Huang, Yueping Xian\",\"doi\":\"10.1109/ITA.2013.38\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"There are two major issues in the current Trojan detection system: some of them can not detect unknown Trojans and many of them have low detection rate. To solve these problems, a Trojan horse detection model of nonlinear SVM based on an effective feature selection optimization algorithm is presented in this paper. In this model, we extract the API (application program interface) calls sequence of an executable program as a feature vector and use the feature selection optimization algorithm to choose High-sensitive characteristics which are quantized into data recognized by SVM to build the SVM feature vector library. SVM classifier is trained with the training dataset to find the optimal separating hyper plane. Experiment results demonstrate that this model named PMI-SVM is more effective and steady.\",\"PeriodicalId\":285687,\"journal\":{\"name\":\"2013 International Conference on Information Technology and Applications\",\"volume\":\"33 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2013-11-16\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2013 International Conference on Information Technology and Applications\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ITA.2013.38\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 International Conference on Information Technology and Applications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ITA.2013.38","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Trojan Detection Model of Nonlinear SVM Based on an Effective Feature Selection Optimization Algorithm
There are two major issues in the current Trojan detection system: some of them can not detect unknown Trojans and many of them have low detection rate. To solve these problems, a Trojan horse detection model of nonlinear SVM based on an effective feature selection optimization algorithm is presented in this paper. In this model, we extract the API (application program interface) calls sequence of an executable program as a feature vector and use the feature selection optimization algorithm to choose High-sensitive characteristics which are quantized into data recognized by SVM to build the SVM feature vector library. SVM classifier is trained with the training dataset to find the optimal separating hyper plane. Experiment results demonstrate that this model named PMI-SVM is more effective and steady.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
