Integrated Negative Selection Algorithm and Positive Selection Algorithm for malware detection
Fuyong Zhang; Ying Ma;
Integrated Negative Selection Algorithm and Positive Selection Algorithm for malware detection
Run-time malware detection strategies are efficient and robust, which get more and more attention. In this paper, we use I/O Request Package (IRP) sequences for malware detection. N-gram will be used to analyze IRP sequences for feature extraction. Integrated Negative Selection Algorithm (NSA) and Positive Selection Algorithm (PSA), through a selection of n-gram sequences which only exist in malware IRP sequences, we have more than 96% true positive rate and 0% false positive rate.
- Xiamen University of Technology China (People's Republic of)
- Dongguan University of Technology China (People's Republic of)
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).4 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Average impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Average
selected citations
Citations provided by BIP!
These citations are derived from selected sources.
This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
Citations provided by BIP!popularityPopularity provided by BIP!
This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.
Popularity provided by BIP! 4
Average
Average
Average
This action will publish the selected files and record in Zenodo. Are you sure you want to proceed?