2014 GuiltbyAssociationLargeScaleMal
- (Tamersoy et al., 2014) ⇒ Acar Tamersoy, Kevin Roundy, and Duen Horng Chau. (2014). “Guilt by Association: Large Scale Malware Detection by Mining File-relation Graphs.” In: Proceedings of the 20th ACM SIGKDD International Conference on Knowledge Discovery and Data Mining (KDD-2014) Journal. ISBN:978-1-4503-2956-9 doi:10.1145/2623330.2623342
Subject Headings:
Notes
Cited By
- http://scholar.google.com/scholar?q=%222014%22+Guilt+by+Association%3A+Large+Scale+Malware+Detection+by+Mining+File-relation+Graphs
- http://dl.acm.org/citation.cfm?id=2623330.2623342&preflayout=flat#citedby
Quotes
Author Keywords
- Belief propagation; data mining; file graph; graph mining; locality sensitive hashing; malware detection; security and protection
Abstract
The increasing sophistication of malicious software calls for new defensive techniques that are harder to evade, and are capable of protecting users against novel threats. We present AESOP, a scalable algorithm that identifies malicious executable files by applying Aesop's moral that " a man is known by the company he keeps. “We use a large dataset voluntarily contributed by the members of Norton Community Watch, consisting of partial lists of the files that exist on their machines, to identify close relationships between files that often appear together on machines. AESOP leverages locality-sensitive hashing to measure the strength of these inter-file relationships to construct a graph, on which it performs large scale inference by propagating information from the labeled files (as benign or malicious) to the preponderance of unlabeled files. AESOP attained early labeling of 99% of benign files and 79% of malicious files, over a week before they are labeled by the state-of-the-art techniques, with a 0.9961 true positive rate at flagging malware, at 0.0001 false positive rate.
References
;
Author | volume | Date Value | title | type | journal | titleUrl | doi | note | year | |
---|---|---|---|---|---|---|---|---|---|---|
2014 GuiltbyAssociationLargeScaleMal | Duen Horng Chau Acar Tamersoy Kevin Roundy | Guilt by Association: Large Scale Malware Detection by Mining File-relation Graphs | 10.1145/2623330.2623342 | 2014 |