Please use this identifier to cite or link to this item: http://repositorio.unicamp.br/jspui/handle/REPOSIP/328014
Type: Artigo
Title: An Ontology Of Suspicious Software Behavior
Author: Gregio
Andre; Bonacin
Rodrigo; de Marchi
Antonio Carlos; Nabuco
Olga Fernanda; de Geus
Paulo Licio
Abstract: Malicious programs have been the main actors in complex, sophisticated attacks against nations, governments, diplomatic agencies, private institutions and people. Knowledge about malicious program behavior forms the basis for constructing more secure information systems. In this article, we introduce MBO, a Malicious Behavior Ontology that represents complex behaviors of suspicious executions, and through inference rules calculates their associated threat level for analytical proposals. We evaluate MBO using over two thousand unique known malware and 385 unique known benign software. Results highlight the representativeness of the MBO for expressing typical malicious activities.
Subject: Security Ontology
Malware Behavior
Threat Analysis
Editor: Ios Press
Amsterdam
Citation: Applied Ontology. Ios Press, v. 11, p. 29 - 49, 2016.
Rights: fechado
Identifier DOI: 10.3233/AO-160163
Address: http://content.iospress.com/articles/applied-ontology/ao163
Date Issue: 2016
Appears in Collections:Unicamp - Artigos e Outros Documentos

Files in This Item:
File SizeFormat 
000373211700002.pdf1.05 MBAdobe PDFView/Open


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.