Abstract
As malicious codes become more complex and sophisticated, the scanning detection method is no longer able to detect various forms of viruses effectively. In this paper, we explore solutions based on multiple classifiers fusion and not strictly dependent on certain malicious code. Motivated by the standard signature-based technique for detecting viruses, we explore the idea of automatically detecting malicious code using the n-gram analysis. After selecting features based on information gain, the probabilistic neural network is used in the process of building and testing the proposed multi-classifiers system. Each one of the individual classifiers is used to produce classification evidences. Then these evidences are combined by the Dempster-Shafer combination rules to form the final classification results for new malicious code. Experimental results produced by the proposed detection engine shows improvement compared to the classification results produced by the individual classifiers. © Springer-Verlag Berlin Heidelberg 2007.
Cite
CITATION STYLE
Zhang, B., Yin, J., Hao, J., Zhang, D., & Wang, S. (2007). Malicious codes detection based on ensemble learning. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 4610 LNCS, pp. 468–477). Springer Verlag. https://doi.org/10.1007/978-3-540-73547-2_48
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
