Malfinder: Accelerated Malware Classification System through Filtering on Manycore System

Taegyu Kim; Woomin Hwang; Chulmin Kim; Dong-Jae Shin; Ki-Woong Park; Kyu Ho Park

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Malfinder: Accelerated Malware Classification System through Filtering on Manycore System

Topics: Security and Privacy; Security Architecture and Design Analysis; Security Frameworks, Architectures and Protocols

In Proceedings of the 1st International Conference on Information Systems Security and Privacy ICISSP - Volume 1, 17-26, 2015 , ESEO, Angers, Loire Valley, France

Authors: Taegyu Kim ¹ ; Woomin Hwang ¹ ; Chulmin Kim ¹ ; Dong-Jae Shin ¹ ; Ki-Woong Park ² and Kyu Ho Park ¹

Affiliations: ¹ Korea Advanced Institute of Science and Technology (KAIST), Korea, Republic of ; ² Daejeon University, Korea, Republic of

Keyword(s): Malware Variant Classification, Identical Structured Control Flow, Table Division, Dynamic Resource Allocation, NUMA (Non Uniform Memory Access).

Related Ontology Subjects/Areas/Topics: Communication and Software Technologies and Architectures ; Computer-Supported Education ; e-Business ; Energy and Economy ; Enterprise Information Systems ; Information Technologies Supporting Learning ; Mobile and Pervasive Computing ; Security and Privacy ; Sustainable Computing and Communications ; Telecommunications

Abstract: Control flow matching methods have been utilized to detect malware variants. However, as the number of malware variants has soared, it has become harder and harder to detect all malware variants while maintaining high accuracy. Even though many researchers have proposed control flow matching methods, there is still a trade-off between accuracy and performance. To solve this trade-off, we designed Malfinder, a method based on approximate matching, which is accurate but slow. To overcome its low performance, we resolve its performance bottleneck and non-parallelism on three fronts: I-Filter for identical string matching, table division to exclude unnecessary comparisons with some malware and dynamic resource allocation for efficient parallelism. Our performance evaluation shows that the total performance improvement is 280.9 times.

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.224.30.113

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Kim, T.; Hwang, W.; Kim, C.; Shin, D.; Park, K. and Park, K. (2015). Malfinder: Accelerated Malware Classification System through Filtering on Manycore System. In Proceedings of the 1st International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-081-9; ISSN 2184-4356, SciTePress, pages 17-26. DOI: 10.5220/0005227500170026

@conference{icissp15,
author={Taegyu Kim. and Woomin Hwang. and Chulmin Kim. and Dong{-}Jae Shin. and Ki{-}Woong Park. and Kyu Ho Park.},
title={Malfinder: Accelerated Malware Classification System through Filtering on Manycore System},
booktitle={Proceedings of the 1st International Conference on Information Systems Security and Privacy - ICISSP},
year={2015},
pages={17-26},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005227500170026},
isbn={978-989-758-081-9},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 1st International Conference on Information Systems Security and Privacy - ICISSP
TI - Malfinder: Accelerated Malware Classification System through Filtering on Manycore System
SN - 978-989-758-081-9
IS - 2184-4356
AU - Kim, T.
AU - Hwang, W.
AU - Kim, C.
AU - Shin, D.
AU - Park, K.
AU - Park, K.
PY - 2015
SP - 17
EP - 26
DO - 10.5220/0005227500170026
PB - SciTePress