基于轻量级流量数据的白名单和机器学习混合系统用于物联网设备的恶意软件检测

IF 4.4 4区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

Enterprise Information Systems Pub Date : 2022-11-09 DOI:10.1080/17517575.2022.2142854

Masataka Nakahara, Norihiro Okui, Yasuaki Kobayashi, Yutaka Miyake, A. Kubota

{"title":"基于轻量级流量数据的白名单和机器学习混合系统用于物联网设备的恶意软件检测","authors":"Masataka Nakahara, Norihiro Okui, Yasuaki Kobayashi, Yutaka Miyake, A. Kubota","doi":"10.1080/17517575.2022.2142854","DOIUrl":null,"url":null,"abstract":"ABSTRACT For the security of IoT devices, the number and type of devices are generally large, so it is important to collect data efficiently and detect threats in a lightweight way. In this paper, we propose the architecture for malware detection, a method to detect malware using flow information, and a method to decrease the amount of transmission data between the servers in this architecture. We evaluate the performance of malware detection and the amount of data before and after the data reduction. And show that the performance of malware detection is maintained even though the amount of data is reduced.","PeriodicalId":11750,"journal":{"name":"Enterprise Information Systems","volume":" ","pages":""},"PeriodicalIF":4.4000,"publicationDate":"2022-11-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Malware detection for IoT devices using hybrid system of whitelist and machine learning based on lightweight flow data\",\"authors\":\"Masataka Nakahara, Norihiro Okui, Yasuaki Kobayashi, Yutaka Miyake, A. Kubota\",\"doi\":\"10.1080/17517575.2022.2142854\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"ABSTRACT For the security of IoT devices, the number and type of devices are generally large, so it is important to collect data efficiently and detect threats in a lightweight way. In this paper, we propose the architecture for malware detection, a method to detect malware using flow information, and a method to decrease the amount of transmission data between the servers in this architecture. We evaluate the performance of malware detection and the amount of data before and after the data reduction. And show that the performance of malware detection is maintained even though the amount of data is reduced.\",\"PeriodicalId\":11750,\"journal\":{\"name\":\"Enterprise Information Systems\",\"volume\":\" \",\"pages\":\"\"},\"PeriodicalIF\":4.4000,\"publicationDate\":\"2022-11-09\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Enterprise Information Systems\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://doi.org/10.1080/17517575.2022.2142854\",\"RegionNum\":4,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, INFORMATION SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Enterprise Information Systems","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.1080/17517575.2022.2142854","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

摘要

摘要为了物联网设备的安全，设备的数量和类型通常都很大，因此高效收集数据并以轻量级的方式检测威胁非常重要。在本文中，我们提出了恶意软件检测的体系结构，一种使用流信息检测恶意软件的方法，以及一种在该体系结构中减少服务器之间传输数据量的方法。我们评估了恶意软件检测的性能以及数据减少前后的数据量。并表明，即使数据量减少，恶意软件检测的性能也得到了保持。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Malware detection for IoT devices using hybrid system of whitelist and machine learning based on lightweight flow data

ABSTRACT For the security of IoT devices, the number and type of devices are generally large, so it is important to collect data efficiently and detect threats in a lightweight way. In this paper, we propose the architecture for malware detection, a method to detect malware using flow information, and a method to decrease the amount of transmission data between the servers in this architecture. We evaluate the performance of malware detection and the amount of data before and after the data reduction. And show that the performance of malware detection is maintained even though the amount of data is reduced.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Enterprise Information Systems 工程技术-计算机：信息系统

CiteScore

11.00

自引率

6.80%

发文量

审稿时长

6 months

期刊介绍： Enterprise Information Systems (EIS) focusses on both the technical and applications aspects of EIS technology, and the complex and cross-disciplinary problems of enterprise integration that arise in integrating extended enterprises in a contemporary global supply chain environment. Techniques developed in mathematical science, computer science, manufacturing engineering, and operations management used in the design or operation of EIS will also be considered.