| 基于免疫和代码重定位的计算机病毒特征码提取与检测方法 |
| |
| 引用本文: | 张瑜,LIU Qing-zhong,宋丽萍,罗自强,曹均阔.基于免疫和代码重定位的计算机病毒特征码提取与检测方法[J].北京理工大学学报,2017,37(10):1036-1042. |
| |
| 作者姓名: | 张瑜 LIU Qing-zhong 宋丽萍 罗自强 曹均阔 |
| |
| 作者单位: | 海南师范大学信息学院,海南,海口 571158;Department of Computer Science,Sam Houston State University, Houston 77340, USA;浙江省电子信息产品检验所信息安全重点实验室,浙江,杭州 310007 |
| |
| 基金项目: | 国家自然科学基金资助项目(61462025,61262077,61363032,61463012);海南省重点研发计划资助项目(ZDYF2016013) |
| |
| 摘 要: | 针对当前感染率高、威胁性极大的感染型计算机病毒,提出了一种基于免疫和代码重定位的计算机病毒特征码提取与检测方法.借鉴生物免疫系统机理,定义了计算机系统中的自体、非自体、抗体、病毒检测器、病毒基因等免疫概念,利用感染型病毒独特的代码重定位特性来提取病毒基因、构建病毒基因库,并在此基础上建立了自体/非自体、病毒基因库和病毒检测器动态演化模型.理论分析与实验结果表明,本方法有效克服了传统方法存在的自体集完备性问题和病毒检测器抗体完整性问题,因而比传统方法有更好的效率与适应性.
|
| 关 键 词: | 人工免疫 病毒检测 特征提取 代码重定位 网络空间安全 |
| 收稿时间: | 2016/9/29 0:00:00 |
Signature Extraction and Detection Method of Computer Viruses Based on Immunity and Code Relocation |
| |
| ZHANG Yu,LIU Qing-zhong,SONG Li-ping,LUO Zi-qiang and CAO Jun-kuo.Signature Extraction and Detection Method of Computer Viruses Based on Immunity and Code Relocation[J].Journal of Beijing Institute of Technology(Natural Science Edition),2017,37(10):1036-1042. |
| |
| Authors: | ZHANG Yu LIU Qing-zhong SONG Li-ping LUO Zi-qiang and CAO Jun-kuo |
| |
| Institution: | 1. College of Information Science and Technology, Hainan Normal University, Haikou, Hainan 571158, China;2. Department of Computer Science, Sam Houston State University, Houston 77340, USA;3. Key Laboratory of Information Security, Institute of Electronic Information Products Inspection of Zhejiang, Hangzhou, Zhejiang 310007, China |
| |
| Abstract: | A novel signature extraction and detection method of computer viruses based on immunity and code relocation was proposed to solve the current infection and threat of computer viruses. Referencing the biology immunity mechanism, some definitions such as self, nonself, antibody, viruses'' detectors, and viruses'' gene were established. Making use of the code relocation to extract viruses'' gene in the computer viruses, a viruses'' gene pool was constructed. And the dynamic evolution equations of self and nonself, viruses'' gene pool, and viruses'' detectors were established. The theoretical analysis and experimental results show that the proposed method can effectively overcome the problem of the self maturity and the integrity of viruses'' detectors. Compared with tradition method, the proposed method shows better efficiency and adaptability. |
| |
| Keywords: | artificial immune computer virus detection virus signature extraction code relocation cyberspace security |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《北京理工大学学报》浏览原始摘要信息 |
| 点击此处可从《北京理工大学学报》下载免费的PDF全文 |
|
