dc.contributor.author | Islam, Rafiqul | |
dc.contributor.author | Altas, Irfan | |
dc.contributor.author | Islam, Md Saiful | |
dc.contributor.editor | Janczewski, LJ | |
dc.contributor.editor | Wolfe, HB | |
dc.contributor.editor | Shenoi, S | |
dc.date.accessioned | 2018-02-23T04:20:35Z | |
dc.date.available | 2018-02-23T04:20:35Z | |
dc.date.issued | 2013 | |
dc.identifier.issn | 1868-4238 | |
dc.identifier.doi | 10.1007/978-3-642-39218-4_1 | |
dc.identifier.uri | http://hdl.handle.net/10072/370086 | |
dc.description.abstract | Over the decades or so, Anti-Malware (AM) communities have been faced with a substantial increase in malware activity, including the development of ever-more-sophisticated methods of evading detection. Researchers have argued that an AM strategy which is successful in a given time period cannot work at a much later date due to the changes in malware design. Despite this argument, in this paper, we convincingly demonstrate a malware detection approach, which retains high accuracy over an extended time period. To the best of our knowledge, this work is the first to examine malware executables collected over a span of 10 years. By combining both static and dynamic features of malware and cleanware, and accumulating these features over intervals in the 10-year period in our test, we construct a high accuracy malware detection method which retains almost steady accuracy over the period. While the trend is a slight down, our results strongly support the hypothesis that perhaps it is possible to develop a malware detection strategy that can work well enough into the future. | |
dc.description.peerreviewed | Yes | |
dc.language | English | |
dc.language.iso | eng | |
dc.publisher | Springer | |
dc.relation.ispartofpagefrom | 1 | |
dc.relation.ispartofpageto | 13 | |
dc.relation.ispartofjournal | IFIP Advances in Information and Communication Technology | |
dc.relation.ispartofvolume | 405 | |
dc.subject.fieldofresearch | Information systems | |
dc.subject.fieldofresearchcode | 4609 | |
dc.title | Exploring Timeline-Based Malware Classification | |
dc.type | Journal article | |
dc.type.description | C1 - Articles | |
dc.type.code | C - Journal Articles | |
gro.hasfulltext | No Full Text | |
gro.griffith.author | Islam, Saiful | |