White Papers

Data Mining Methods for Detection of New Malicious Executables

Category: Data Management, Security

Tags: email, data

Overview A serious security threat is malicious executables, especially new, unseen malicious executables often arriving as email attachments. These new malicious executables are created at the rate of thousands every year and pose a serious security threat. Current anti-virus systems attempt to detect these new malicious programs with heuristics generated by hand. This approach is costly and oftentimes ineffective. This paper presents a data-mining framework that detects new, previously unseen malicious executables accurately and automatically. The data-mining framework automatically found patterns in the data set and used these patterns to detect a set of new malicious binaries. Comparing the detection methods with a traditional signature-based method, the method more than doubles the current detection rates for new malicious executables.

Download White Paper

By downloading you agree to our Terms and Conditions. These include information regarding use of your personal data.

Publisher
Columbia University
File Format
PDF
Date Published
Oct 1, 2008
Format
White Papers
Topics
Network Security, Data Mining - Analysis, Security Management

Similiar White Papers

Desert Schools Federal Credit Union Upgrades Internet Security to Give Members Advanced Fraud Protection

Desert Schools Federal Credit Union Upgrades Internet Security to Give Members Advanced Fraud Protection

Desert Schools Federal Credit Union is Arizona's largest credit union, with more than US$2.7 billion in assets, over 325

Publisher: Oracle  |  Tags: data, phishing, real-time, risk analysis, union

The RSA Authentication Decision Tree: Selecting the Best Authentication Method for Your Business White Paper

The RSA Authentication Decision Tree: Selecting the Best Authentication Method for Your Business White Paper

The RSA Authentication Decision Tree: Selecting the Best Authentication Method for Your Business White Paper provides an

Publisher: RSA Security  |  Tags: authentication

Columbia University White Papers

An Analysis of the Skype Peer-to-Peer Internet Telephony Protocol

An Analysis of the Skype Peer-to-Peer Internet Telephony Protocol

Skype is a peer-to-peer VoIP client developed by KaZaa. Skype claims that it can work almost seamlessly across NATs and

Publisher: Columbia University  |  Tags: applications, firewall, instant messaging, ip, network, peer-to-peer, voip, yahoo im

A Budget-Balanced and Price-Adaptive Credit Protocol for MANETs

A Budget-Balanced and Price-Adaptive Credit Protocol for MANETs

A virtual credit exchange protocol for Mobile Ad-hoc NETworks (MANETs) is proposed to enforce the cooperation of packet

Publisher: Columbia University  |  Tags: data, updates

Buy-at-Bulk Network Design With Protection

Buy-at-Bulk Network Design With Protection

This paper considers approximation algorithms for buy-at-bulk network design, with the additional constraint that demand

Publisher: Columbia University  |  Tags: network

On the Detection of Signaling DoS Attacks on 3G Wireless Networks

On the Detection of Signaling DoS Attacks on 3G Wireless Networks

Third Generation (3G) wireless networks based on the CDMA2000 and UMTS standards are now increasingly being deployed thr

Publisher: Columbia University  |  Tags: cdma2000, umts, wireless networks

Fairness and Physical Layer Capture in Random Access Networks

Fairness and Physical Layer Capture in Random Access Networks

While physical layer capture has been observed in real implementations of wireless devices which randomly accessing shar

Publisher: Columbia University