Title :
A Study on Malware Detection System Model Based on Correlation Analysis Using Live Response Techniques
Author :
Young Hwan Lim ; Hong Ryeol Ryu ; Kyung Sung Choi ; Chan Wook Park ; Won Hyung Park ; Kwang Ho Kook
Author_Institution :
Dept. of Ind. & Inf. Syst. Eng., Seoul Nat. Univ. of Sci. & Technol., Seoul, South Korea
Abstract :
Recently, cyber terrors are increasing in their frequencies and scales, for example, 3.4 DDoS and 4.12 APT attack to NH Bank, and consequently in the damage. The recent cyber attacks are characterized by being conducted under specific goals by certain individuals or group of people, using diversified methods, over a long time to invade the target system. The goals include pecuniary and political profits. The kinds of malware which discloses private, credit, or financial information are ever increasing, followed by the secondary damage including appropriation of others names and financial frauds. In case of such invasion cases, fast detection of the malware in the system under attack is necessary. However, the response technologies cannot catch up with the development of malware and it takes time and efforts to handle intrusion cases. This paper proposes a correlation analysis detection technology based on a new concept to help faster and correct detection of malware in infected PCs.
Keywords :
invasive software; APT attack; DDoS; Malware detection system model; NH bank; correlation analysis; cyber attacks; cyber terrors; financial information; live response techniques; pecuniary profits; political profits; target system; Computer crime; Correlation; Data mining; IP networks; Malware; Software; Universal Serial Bus;
Conference_Titel :
Information Science and Applications (ICISA), 2012 International Conference on
Conference_Location :
Suwon
Print_ISBN :
978-1-4673-1402-2
DOI :
10.1109/ICISA.2012.6220972
