دورية أكاديمية
Evaluating model checking for cyber threats code obfuscation identification
العنوان: | Evaluating model checking for cyber threats code obfuscation identification |
---|---|
المؤلفون: | Martinelli, Fabio, Mercaldo, Francesco, Nardone, Vittoria, SANTONE, Antonella, Sangaiah, Arun Kumar, Cimitile, Aniello |
المساهمون: | Martinelli, Fabio, Mercaldo, Francesco, Nardone, Vittoria, Santone, Antonella, Sangaiah, Arun Kumar, Cimitile, Aniello |
سنة النشر: | 2018 |
المجموعة: | Università degli Studi del Molise: IRIS |
مصطلحات موضوعية: | Android, Formal method, Malware, Model checking, Obfuscation, Software, Theoretical Computer Science, Hardware and Architecture, Computer Networks and Communication, Artificial Intelligence |
الوصف: | Code obfuscation is a set of transformations that make code programs harder to understand. The goal of code obfuscation is to make reverse engineering of programs infeasible, while maintaining the logic on the program. Originally, it has been used to protect intellectual property. However, recently code obfuscation has been also used by malware writers in order to make cyber threats easily able to evade antimalware scanners. As a matter of fact, metamorphic and polymorphic viruses exhibit the ability to obfuscate their code as they propagate. In this paper we propose a model checking-based approach which is able to identify the most widespread obfuscating techniques, without making any assumptions about the nature of the obfuscations used. We evaluate the proposed method on a real-world dataset obtaining an accuracy equal to 0.9 in the identification of obfuscation techniques. |
نوع الوثيقة: | article in journal/newspaper |
اللغة: | English |
العلاقة: | info:eu-repo/semantics/altIdentifier/wos/WOS:000435425500017; volume:119; firstpage:203; lastpage:218; numberofpages:16; journal:JOURNAL OF PARALLEL AND DISTRIBUTED COMPUTING; http://hdl.handle.net/11695/79376Test; info:eu-repo/semantics/altIdentifier/scopus/2-s2.0-85047166991; http://www.elsevier.com/inca/publications/store/6/2/2/8/9/5/index.httTest |
DOI: | 10.1016/j.jpdc.2018.04.008 |
الإتاحة: | https://doi.org/10.1016/j.jpdc.2018.04.008Test http://hdl.handle.net/11695/79376Test http://www.elsevier.com/inca/publications/store/6/2/2/8/9/5/index.httTest |
رقم الانضمام: | edsbas.9488565A |
قاعدة البيانات: | BASE |
DOI: | 10.1016/j.jpdc.2018.04.008 |
---|