On behavioral detection

Philippe Beaucamps 1 Jean-Yves Marion 1
1 CARTE - Theoretical adverse computations, and safety
Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : This study is about behavioral detection based on automata over infinite words. Malware are considered as concurrent systems, which interact with an environment. So malware traces are now infinite words. We propose a NLOGSPACE behavioral detection method based on B¨uchi automata. The goal of this paper is to present in a nutshell some theoretical aspects behind behavioral analysis. We don't take up questions related to implementations, which will be studied in forthcoming papers.
Type de document :
Communication dans un congrès
18th EICAR Annual Conference 2009, May 2009, Berlin, Germany. 2009
Liste complète des métadonnées

Contributeur : Jean-Yves Marion <>
Soumis le : mercredi 28 novembre 2012 - 16:58:11
Dernière modification le : mardi 18 décembre 2018 - 16:48:02


  • HAL Id : hal-00758423, version 1



Philippe Beaucamps, Jean-Yves Marion. On behavioral detection. 18th EICAR Annual Conference 2009, May 2009, Berlin, Germany. 2009. 〈hal-00758423〉



Consultations de la notice