Publication Type:

Journal Article

Source:

Advances in Intelligent Systems and Computing, Springer Verlag, Volume 516, p.129-137 (2017)

ISBN:

9789811031557

URL:

https://www.scopus.com/inward/record.uri?eid=2-s2.0-85014935158&doi=10.1007%2f978-981-10-3156-4_13&partnerID=40&md5=548b8c9a48c812f2287816ddda9435f0

Abstract:

Drive-by-Download is an unintentional download of a malware on to a user system. Detection of drive-by-download based malware infection in a host is a challenging task, due to the stealthy nature of this attack. The user of the system is not aware of the malware infection occurred as it happens in the background. The signature based antivirus systems are not able to detect zero-day malware. Most of the detection has been performed either from the signature matching or by reverse engineering the binaries or by running the binaries in a sandbox environment. In this paper, we propose One Class SVM based supervised learning method to detect the drive-by-download infection. The features comprises of system RAM and CPU utilization details. The experimental setup to collect data contains machine specification matching 4 user profiles namely Designer, Gamer, Normal User and Student. The experimental system proposed in this paper was evaluated using precision, recall and F-measure. © Springer Nature Singapore Pte Ltd. 2017.

Notes:

cited By 0; Conference of 5th International Conference on Frontiers in Intelligent Computing Theory and Applications, FICTA 2016 ; Conference Date: 16 September 2016 Through 17 September 2016; Conference Code:189629

Cite this Research Publication

P. Poornachandran, Praveen, S., Ashok, A., Krishnan, M. R., and Dr. Soman K. P., “Drive-by-download malware detection in hosts by analyzing system resource utilization using one class support vector machines”, Advances in Intelligent Systems and Computing, vol. 516, pp. 129-137, 2017.

207
PROGRAMS
OFFERED
5
AMRITA
CAMPUSES
15
CONSTITUENT
SCHOOLS
A
GRADE BY
NAAC, MHRD
9th
RANK(INDIA):
NIRF 2017
150+
INTERNATIONAL
PARTNERS