Malware Behavior Modeling with Colored Petri Nets

Abstract : We propose a solution which provides a system operator with a mechanism that enables tracking and tracing of malware behavior which – in consequence – leads to its detection and neutralization. The detection is performed in two steps. Firstly single malicious activities are identified and filtered out. As they come from the identification module, they are compared with malware models constructed in the form of Colored Petri nets. In this article we present our approach to malware modeling. Proposed method was implemented and practically verified in laboratory environment with emulated malicious activity at the hosts level.
Type de document :
Communication dans un congrès
Khalid Saeed; Václav Snášel. 13th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Nov 2014, Ho Chi Minh City, Vietnam. Springer, Lecture Notes in Computer Science, LNCS-8838, pp.667-679, 2014, Computer Information Systems and Industrial Management. 〈10.1007/978-3-662-45237-0_60〉
Liste complète des métadonnées

Littérature citée [29 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01405661
Contributeur : Hal Ifip <>
Soumis le : mercredi 30 novembre 2016 - 11:27:53
Dernière modification le : jeudi 16 août 2018 - 17:00:02
Document(s) archivé(s) le : lundi 27 mars 2017 - 07:49:49

Fichier

978-3-662-45237-0_60_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Bartosz Jasiul, Marcin Szpyrka, Joanna Śliwa. Malware Behavior Modeling with Colored Petri Nets. Khalid Saeed; Václav Snášel. 13th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Nov 2014, Ho Chi Minh City, Vietnam. Springer, Lecture Notes in Computer Science, LNCS-8838, pp.667-679, 2014, Computer Information Systems and Industrial Management. 〈10.1007/978-3-662-45237-0_60〉. 〈hal-01405661〉

Partager

Métriques

Consultations de la notice

79

Téléchargements de fichiers

160