Skip to main content
Conference Proceedings

Unknown malicious identification

Lecture Notes in Electrical Engineering (2009) 39 LNEE 301-312
DOI: 10.1007/978-90-481-2311-7_26
2Citations
Citations of this article
1Readers
Mendeley users who have this article in their library.
Get full text

Abstract

The detection of unknown malicious executables is beyond the capability of many existing detection approaches. Machine learning or data mining methods can identify new or unknown malicious executables with some degree of success. Feature set is a key to apply data mining or machine learning to successfully detect malicious executables. In this paper, we present an approach that conducts an exhaustive feature search on a set of malicious executables and strives to obviate over-fitting. To improve the performance of Bayesian classifier, we present a novel algorithm called Half Increment Näive Bayes (HIB), which selects the features by carrying an evolutional search. We also evaluate the predictive power of a classifier, and we show that our classifier yields high detection rates and learning speed. © 2009 Springer Netherlands.

Author supplied keywords

Cite

CITATION STYLE

APA

Lai, Y. X., & Liu, Z. H. (2009). Unknown malicious identification. In Lecture Notes in Electrical Engineering (Vol. 39 LNEE, pp. 301–312). https://doi.org/10.1007/978-90-481-2311-7_26

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free