Abstract : We propose a solution which provides a system operator with a mechanism that enables tracking and tracing of malware behavior which – in consequence – leads to its detection and neutralization. The detection is performed in two steps. Firstly single malicious activities are identified and filtered out. As they come from the identification module, they are compared with malware models constructed in the form of Colored Petri nets. In this article we present our approach to malware modeling. Proposed method was implemented and practically verified in laboratory environment with emulated malicious activity at the hosts level.
Khalid Saeed; Václav Snášel. 13th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Nov 2014, Ho Chi Minh City, Vietnam. Springer, Lecture Notes in Computer Science, LNCS-8838, pp.667-679, 2014, Computer Information Systems and Industrial Management. 〈10.1007/978-3-662-45237-0_60〉
https://hal.inria.fr/hal-01405661
Contributeur : Hal Ifip
<>
Soumis le : mercredi 30 novembre 2016 - 11:27:53
Dernière modification le : jeudi 16 août 2018 - 17:00:02
Document(s) archivé(s) le : lundi 27 mars 2017 - 07:49:49
Bartosz Jasiul, Marcin Szpyrka, Joanna Śliwa. Malware Behavior Modeling with Colored Petri Nets. Khalid Saeed; Václav Snášel. 13th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Nov 2014, Ho Chi Minh City, Vietnam. Springer, Lecture Notes in Computer Science, LNCS-8838, pp.667-679, 2014, Computer Information Systems and Industrial Management. 〈10.1007/978-3-662-45237-0_60〉. 〈hal-01405661〉
