Author_Institution :
Sch. of Comput. Sci., Sichuan Univ., Chengdu, China
Abstract :
In this paper, inspired by the change of antibody concentration in biological immune system, we present a novel computer virus detection method from ideas of immunology (NCVDMII). In NCVDMII, the concepts and formal definitions of antibody, antigen, nonself and detector are given. Then, NCVDMII get the specific antibody from the simulation of primary immune response and calculate the antibody number by using the secondary immune response. Finally, building upon the above processes, a probabilistic calculation method for computer virus alarm production, which is based on the correlation between the antibody concentration and the computer virus infection intensity, is proposed. Compared with negative selection algorithm (NSA), automatic computer immune system (ACIS) and immunity-based system (IBS), the false alarm rate of NCVDMII is reduced by 17.5%, 5.0% and 2.8%, respectively.
Keywords :
artificial immune systems; computer viruses; probability; antibody concentration; automatic computer immune system; biological immune system; computer virus detection method; computer virus infection intensity; immunity-based system; negative selection algorithm; primary immune response; probabilistic calculation method; secondary immune response; Biological system modeling; Biology computing; Cloning; Computational modeling; Computer networks; Computer science; Computer security; Immune system; Information security; Multimedia systems; computer virus alarm production; computer virus detection; false alarm rate; immunology;
