A hybrid algorithm based on attribute reduction of Rough Sets(RS) and classification principles of Support Vector Machine (SVM) to detect new malicious executable codes is present. Firstly, the attribute reduction of RS has been applied as preprocessor so that we can delete redundant attributes and conflicting objects from decision making table but remain efficient information lossless. Then, we realize classification modeling and forecasting test based on SVM. By this method, we can reduce the dimension of data, decrease the complexity in the process. Finally, comparison of detection ability between the above detection method and others is given. Experiment result shows that the present method could effectively use to discriminate normal and abnormal executable codes. © Springer-Verlag Berlin Heidelberg 2006.
CITATION STYLE
Zhang, B., Yin, J., & Hao, J. (2006). Using RS and SVM to detect new malicious executable codes. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 4062 LNAI, pp. 574–579). Springer Verlag. https://doi.org/10.1007/11795131_83
Mendeley helps you to discover research relevant for your work.