Run-time malware detection strategies are efficient and robust, which get more and more attention. In this paper, we use I/O Request Package (IRP) sequences for malware detection. N-gram will be used to analyze IRP sequences for feature extraction. Integrated use of Negative Selection Algorithm (NSA) and Positive Selection Algorithm (PSA), we get more than 96% true positive rate and 0% false positive rate, by a selection of n-gram sequences which only exist in malware IRP sequences. © 2010 Springer-Verlag.
CITATION STYLE
Zhang, F., Qi, D., & Hu, J. (2010). Recent Advances in Intrusion Detection. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 6307(September), 514–515. Retrieved from http://www.scopus.com/inward/record.url?eid=2-s2.0-78249249258&partnerID=tZOtx3y1
Mendeley helps you to discover research relevant for your work.