A New Feature Selection Method for Malcodes Detection

Author

Zhang, Xiaokang ; Shuai, Jianmei

Author_Institution

Dept. of Autom., Univ. of Sci. & Technol., Hefei, China

Volume

fYear

2009

fDate

18-20 Aug. 2009

Firstpage

423

Lastpage

426

Abstract

Most of traditional antivirus systems fail to detect unknown malcodes or variants. Data mining method solves this problem as it classifies new malcodes by matching representative features. Feature selection is a key to apply data mining to successfully detect malcodes. In this paper, we propose a method, weighted information gain (WIG), which can select effective features more correctly by combining the advantages of information gain with feature frequency. The experiment results demonstrate that the proposed method achieves high detection and accuracy rate.

Keywords

computer viruses; data mining; feature extraction; WIG; data mining method; feature matching; feature selection method; malcodes detection; weighted information gain; Automation; Binary codes; Data mining; Data security; Feature extraction; Frequency; Information security; Intrusion detection; Text categorization; Viruses (medical); feature seletcion; information gain; variable n-gram;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Assurance and Security, 2009. IAS '09. Fifth International Conference on

Conference_Location

Xian

Print_ISBN

978-0-7695-3744-3

Type

conf

DOI

10.1109/IAS.2009.20

Filename

5284162

Link To Document

https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1823631