On behavioral detection

Philippe Beaucamps 1 Jean-Yves Marion 1
1 CARTE - Theoretical adverse computations, and safety
Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : This study is about behavioral detection based on automata over infinite words. Malware are considered as concurrent systems, which interact with an environment. So malware traces are now infinite words. We propose a NLOGSPACE behavioral detection method based on B¨uchi automata. The goal of this paper is to present in a nutshell some theoretical aspects behind behavioral analysis. We don't take up questions related to implementations, which will be studied in forthcoming papers.
Type de document :
Communication dans un congrès
18th EICAR Annual Conference 2009, May 2009, Berlin, Germany. 2009
Liste complète des métadonnées

https://hal.inria.fr/hal-00758423
Contributeur : Jean-Yves Marion <>
Soumis le : mercredi 28 novembre 2012 - 16:58:11
Dernière modification le : jeudi 11 janvier 2018 - 06:21:25

Identifiants

  • HAL Id : hal-00758423, version 1

Collections

Citation

Philippe Beaucamps, Jean-Yves Marion. On behavioral detection. 18th EICAR Annual Conference 2009, May 2009, Berlin, Germany. 2009. 〈hal-00758423〉

Partager

Métriques

Consultations de la notice

279