Classification of polymorphic virus based on integrated features
Standard virus classification relies on the use of virus function, which is a small number of bytes written in assembly language. The addressable problem with current malware intrusion detection and prevention system is having difficulties in detecting unknown and multipath polymorphic computer viru...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | en |
| Published: |
Insight - Indonesian Society for Knowledge and Human Development
2018
|
| Subjects: | |
| Online Access: | http://eprints.uthm.edu.my/5013/1/AJ%202018%20%28816%29%20Classification%20of%20polymorphic%20virus%20based%20on%20integrated%20features.pdf http://eprints.uthm.edu.my/5013/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1833417743964045312 |
|---|---|
| author | A Hamid, Isredza Rahmi Subramaniam, Sharmila Sutoyo, Edi Abdullah, Zubaile |
| author_facet | A Hamid, Isredza Rahmi Subramaniam, Sharmila Sutoyo, Edi Abdullah, Zubaile |
| author_sort | A Hamid, Isredza Rahmi |
| building | UTHM Library |
| collection | Institutional Repository |
| content_provider | Universiti Tun Hussein Onn Malaysia |
| content_source | UTHM Institutional Repository |
| continent | Asia |
| country | Malaysia |
| description | Standard virus classification relies on the use of virus function, which is a small number of bytes written in assembly language. The addressable problem with current malware intrusion detection and prevention system is having difficulties in detecting unknown and multipath polymorphic computer virus solely based on either static or dynamic features. Thus, this paper presents a classification of polymorphic virus based on integrated features. The integrated feature is selected based on Information Gain rank value between static and dynamic features. Then, all datasets are tested on Naïve Bayes and Random Forest classifiers. We extracted 49 features from 700 polymorphic computer virus samples from Netherland Net Lab and VXHeaven, which includes benign and polymorphic virus function. We spilt the dataset based on 60% for training and 40% for testing. The performance metric of accuracy value, receiver operating characteristic and mean absolute error are compared between two algorithms in the experiment of static, dynamic and integrated features. Our proposed integrated features manage to achieve 98.5% of accuracy value using highest rank feature selection. |
| format | Article |
| id | my.uthm.eprints-5013 |
| institution | Universiti Tun Hussein Onn Malaysia |
| language | en |
| publishDate | 2018 |
| publisher | Insight - Indonesian Society for Knowledge and Human Development |
| record_format | eprints |
| spelling | my.uthm.eprints-50132022-01-03T06:07:25Z http://eprints.uthm.edu.my/5013/ Classification of polymorphic virus based on integrated features A Hamid, Isredza Rahmi Subramaniam, Sharmila Sutoyo, Edi Abdullah, Zubaile T Technology (General) QA71-90 Instruments and machines Standard virus classification relies on the use of virus function, which is a small number of bytes written in assembly language. The addressable problem with current malware intrusion detection and prevention system is having difficulties in detecting unknown and multipath polymorphic computer virus solely based on either static or dynamic features. Thus, this paper presents a classification of polymorphic virus based on integrated features. The integrated feature is selected based on Information Gain rank value between static and dynamic features. Then, all datasets are tested on Naïve Bayes and Random Forest classifiers. We extracted 49 features from 700 polymorphic computer virus samples from Netherland Net Lab and VXHeaven, which includes benign and polymorphic virus function. We spilt the dataset based on 60% for training and 40% for testing. The performance metric of accuracy value, receiver operating characteristic and mean absolute error are compared between two algorithms in the experiment of static, dynamic and integrated features. Our proposed integrated features manage to achieve 98.5% of accuracy value using highest rank feature selection. Insight - Indonesian Society for Knowledge and Human Development 2018 Article PeerReviewed text en http://eprints.uthm.edu.my/5013/1/AJ%202018%20%28816%29%20Classification%20of%20polymorphic%20virus%20based%20on%20integrated%20features.pdf A Hamid, Isredza Rahmi and Subramaniam, Sharmila and Sutoyo, Edi and Abdullah, Zubaile (2018) Classification of polymorphic virus based on integrated features. International Journal on Advanced Science Engineering Information Technology, 8 (6). pp. 2577-2583. ISSN 2088-5334 |
| spellingShingle | T Technology (General) QA71-90 Instruments and machines A Hamid, Isredza Rahmi Subramaniam, Sharmila Sutoyo, Edi Abdullah, Zubaile Classification of polymorphic virus based on integrated features |
| title | Classification of polymorphic virus based on integrated features |
| title_full | Classification of polymorphic virus based on integrated features |
| title_fullStr | Classification of polymorphic virus based on integrated features |
| title_full_unstemmed | Classification of polymorphic virus based on integrated features |
| title_short | Classification of polymorphic virus based on integrated features |
| title_sort | classification of polymorphic virus based on integrated features |
| topic | T Technology (General) QA71-90 Instruments and machines |
| url | http://eprints.uthm.edu.my/5013/1/AJ%202018%20%28816%29%20Classification%20of%20polymorphic%20virus%20based%20on%20integrated%20features.pdf http://eprints.uthm.edu.my/5013/ |
| url_provider | http://eprints.uthm.edu.my/ |