Title :
Formalization of Viruses and Malware Through Process Algebras
Author :
Jacob, Gregoire ; Filiol, Eric ; Debar, Hervé
Author_Institution :
ESIEA, France
Abstract :
Abstract virology has seen the apparition of successive viral models, all based on Turing-equivalent formalisms. Considering recent malware, these are only partially covered because functional formalisms do not support interactive computations. This article provides a basis for a unified malware model, founded on the Join-Calculus. In terms of expressiveness, the process-based model supports the fundamental notion of self-replication but also interactions, concurrency and non-termination to cover evolved malware. In terms of protection, detection undecidability and prevention by isolation still hold. Additional results are established: calculus fragments where detection is decidable, definition of a non-infection property, potential solutions to restrict propagation.
Keywords :
decidability; invasive software; process algebra; Join-Calculus; Turing-equivalent formalisms; abstract virology; detection undecidability; malware formalization; process algebras; process-based malware model; viral models; virus formalization; Algebra; Availability; Calculus; Computer viruses; Concurrent computing; Jacobian matrices; Protection; Security; Steganography; Viruses (medical); detection; malware; prevention; process algebra;
Conference_Titel :
Availability, Reliability, and Security, 2010. ARES '10 International Conference on
Conference_Location :
Krakow
Print_ISBN :
978-1-4244-5879-0
DOI :
10.1109/ARES.2010.59
