Automated Malware Detection Based on Novel Network Behavioral Signatures

Maros Barabas, Ivan Homoliak, Michal Drozd, Petr Hanacek
2013 International Journal of Engineering and Technology  
In this paper we introduce the second generation of the experimental detection framework of AIPS system which is used for experimentation with detection models and with their combinations. Our research aims mainly on detection of attacks that abuse vulnerabilities of buffer overflow type, but the final goal is to extend detection techniques to cover various types of vulnerabilities. This article describes the concept of detection framework, updated set of network metrics, provides a design of
more » ... vides a design of model architecture and shows an experimental results with draft of framework on the set of laboratory simulated attacks. Index Terms-Artificial intelligence, behavioral signatures, metrics, network security, security, security design.
doi:10.7763/ijet.2013.v5.552 fatcat:rc3umrvfxfdb3moe5q7j3m52p4