In this book, we consider the aspects of designing a computer immune system for virus detection and elimination using components and techniques found in the biological immune system. In the modeling of the biological immune system, we consider the use of three different kinds of loose matching: Hamming Distance, R-Contiguous Symbols, and Hidden Markov M odels (HMMs). Experiments with virus infected programs and HMMs are presented. HMMs are trained on static code from non-infected programs and on traces of systems calls generated by executions of non- infected programs. The programs are infected with a virus and the HMMs ability to detect the infections is tested. It is concluded that HMMs can successfully detect virus infections in programs from static code and from traces of system calls generated by executions of programs.
Sprache
Produkt-Hinweis
Broschur/Paperback
Klebebindung
Maße
Höhe: 220 mm
Breite: 150 mm
Dicke: 14 mm
Gewicht
ISBN-13
978-3-659-81457-0 (9783659814570)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Klassifikation
Moataz Ahmed Samy - MSc Degree in Computer Science. Cairo University, Faculty of Computers and Information, Department of Computer Science.
