SEI Blog » Archives

Home
Authors

Entries Tagged as 'Machine Learning '

Sep 19
2011

Using Machine Learning to Detect Malware Similarity

Machine Learning , Malware , SEI Research 1 Comment »

By Sagar Chaki, Senior Member of the Technical Staff
Research, Technology, and System Solutions

Malware, which is short for “malicious software,” consists of programming aimed at disrupting or denying operation, gathering private information without consent, gaining unauthorized access to system resources, and other inappropriate behavior. Malware infestation is of increasing concern to government and commercial organizations. For example, according to the Global Threat Report from Cisco Security Intelligence Operations, there were 287,298 “unique malware encounters” in June 2011, double the number of incidents that occurred in March. To help mitigate the threat of malware, researchers at the SEI are investigating the origin of executable software binaries that often take the form of malware. This posting augments a previous posting describing our research on using classification (a form of machine learning) to detect “provenance similarities” in binaries, which means that they have been compiled from similar source code (e.g., differing by only minor revisions) and with similar compilers (e.g., different versions of Microsoft Visual C++ or different levels of optimization).

Read more...

Search
SEI Links
Categories
- Acquisition (30)
- Acquisition Dynamics (6)
- Agile (21)
- Architecture (8)
- Architecture Analysis & Design Language (AADL) (4)
- Architecture Centric Engineering (ACE) (4)
- Architecture Documentation (5)
- Architecture Driven Design (ADD) (2)
- Architecture Tradeoff Analysis Method (ATAM) (3)
- Artificial Intelligence (1)
- Automated remediation (1)
- Autonomy (1)
- Binaries (4)
- CERT (13)
- Cloud Computing (5)
- CMMI (8)
- Common Operating Platform Environments (COPEs) (7)
- Concurrency Analysis (2)
- Cyber-physical Systems (8)
- Data Quality (1)
- Fuzzy Hashing (3)
- Handheld Devices (5)
- Insider Threat (11)
- Interoperability (1)
- Lean (3)
- Machine Learning (1)
- Malware (11)
- Measurement & Analysis (8)
- Multicore Processors (1)
- Operational Resilience (3)
- Quality Attribute Workshop (3)
- Readiness & Fit Analysis (1)
- Real-Time Scheduling (2)
- Reflections on Software Architecture (4)
- Resilience Management Model (RMM) (6)
- Safety-Related Requirements (5)
- Secure Coding (6)
- Security-Related Requirements (5)
- SEI Research (53)
- Service-Oriented Architecture (4)
- Smart Grid Maturity Model (3)
- Software Assurance (2)
- Software Cost Estimates (6)
- Software Product Lines (2)
- Software Sustainment (6)
- Strategic Planning (3)
- System of Systems (2)
- Systems Engineering (1)
- Tactical Systems (4)
- Team Software Process (TSP) (12)
- Technical Debt (5)
- Testing (3)
- Ultra Large Scale Systems (5)
Authors
Archives
Subscribe

Subscribe below to receive email notification of new blog posts. You may unsubscribe at any time.

Recent Posts

The Value of Systems Engineering
5-20-2013
Don’t Sign that Applet!
5-13-2013
Common Testing Problems: Pitfalls to Prevent and Mitigate
5-6-2013
AADL Tools: Leveraging the Ecosystem
4-29-2013
The Latest Research from the SEI
4-22-2013

Recent Comments

Marie Nithya: Java applets are good for people who value security, atleast as far as i am...
Joel Stottlemire: I'm fascinated with the word "ecosystem" used to describe the...
Jack Sunderland: Very insightful indeed. Thanks for sharing AADL community wiki link. I will...
Enrique Cruz: Thanks a lot for answer Grace!

Subscribe to our RSS feeds

Contact | Locations | Legal

© 2013 Carnegie Mellon University