Skip to Main content Skip to Navigation
Conference papers

Performance Improvements in Behavior Based Malware Detection Solutions

Abstract : The constant evolution of malware, both in number and complexity, represents a severe threat to individual users and organizations. This is increasing the need for more advanced security solutions, such as dynamic behavior-based malware detection, that monitor and analyze actions performed on a system in real time. However, this approach comes with an intuitive downfall, the performance overhead. For this issue we propose two solutions that can be used separately or combined. The first approach takes advantage of the advances in hardware and uses asynchronous processing, thus reducing the impact on the monitored applications. The second approach relies on a dynamic reputation system, based on which different monitoring levels for applications can be defined. The differential monitoring of processes according to their dynamic reputation leads to a diminished general performance impact and also a lower false positive rate.
Document type :
Conference papers
Complete list of metadata

Cited literature [18 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Thursday, February 21, 2019 - 3:45:53 PM
Last modification on : Friday, April 19, 2019 - 4:26:41 PM
Long-term archiving on: : Wednesday, May 22, 2019 - 7:43:58 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Gheorghe Hăjmăşan, Alexandra Mondoc, Radu Portase, Octavian Creţ. Performance Improvements in Behavior Based Malware Detection Solutions. 33th IFIP International Conference on ICT Systems Security and Privacy Protection (SEC), Sep 2018, Poznan, Poland. pp.370-384, ⟨10.1007/978-3-319-99828-2_26⟩. ⟨hal-02023724⟩



Record views


Files downloads