Name
Abstract | ||
|---|---|---|
For many years the detection of malware and preparation of the ways of preventing them have been treated as two distinct issues. Malware monitoring should provide information on how to detect the presence of malware and attempts to infect the system. The protecting systems using this information should identify and stop malware operation. This paradigm led to current solutions, where protecting systems focus on detection of incoming threats and do not pay attention on the presence of not previously detected malware in the system. Malware authors have developed various methods of circumventing the defense lines of protecting systems, what results in a growing stream of information of systems security breaches. This indicates the need for additional line of defense, focused on detection of the malware, which penetrated defenses of the system. The paper presents the concept of such additional defense line, discusses the sources of necessary informations, method for detection of unknown malware and possible method of blocking malware operation. |
Year | DOI | Venue |
|---|---|---|
2017 | 10.1007/978-3-319-59767-6_12 | Communications in Computer and Information Science |
Keywords | Field | DocType |
Malware detection,System self-defense,Monitoring of outbound communication,Blocking malware operation | Computer security,Computer science,Computer network,Scareware,Malware | Conference |
Volume | ISSN | Citations |
718 | 1865-0929 | 0 |
PageRank | References | Authors |
0.34 | 8 | 2 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Mirosław Skrzewski | 1 | 20 | 4.22 |
| Pawel Rybka | 2 | 0 | 0.34 |