Malware distributed collection and pre-classification system using honeypot technology
| Contribuinte(s) |
Universidade Estadual Paulista (UNESP) |
|---|---|
| Data(s) |
27/05/2014
27/05/2014
15/06/2009
|
| Resumo |
Malware has become a major threat in the last years due to the ease of spread through the Internet. Malware detection has become difficult with the use of compression, polymorphic methods and techniques to detect and disable security software. Those and other obfuscation techniques pose a problem for detection and classification schemes that analyze malware behavior. In this paper we propose a distributed architecture to improve malware collection using different honeypot technologies to increase the variety of malware collected. We also present a daemon tool developed to grab malware distributed through spam and a pre-classification technique that uses antivirus technology to separate malware in generic classes. © 2009 SPIE. |
| Identificador |
http://dx.doi.org/10.1117/12.818310 Proceedings of SPIE - The International Society for Optical Engineering, v. 7344. 0277-786X http://hdl.handle.net/11449/71036 10.1117/12.818310 2-s2.0-66749173635 |
| Idioma(s) |
eng |
| Relação |
Proceedings of SPIE - The International Society for Optical Engineering |
| Direitos |
closedAccess |
| Palavras-Chave | #Honeyclients #Honeypots #Information systems security #Malicious software #Malware collection #Computer software #Information management #Information systems #Internet #Intrusion detection #Mining #Computer crime |
| Tipo |
info:eu-repo/semantics/conferencePaper |
