检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:Roee SLeon Michael Kiperberg Anat Anatey Leon Zabag Nezer Jacob Zaidenberg
机构地区:[1]Shenkar College,Ramat Gan,Israel [2]Department of Software Engineering,Shamoon College of Engineering,Beer-Sheva,Israel [3]College of Management Academic Studies,Rishon LeTsiyon Israel [4]University of Jyväskylä,Jyväskylä,Finland
出 处:《Cybersecurity》2021年第1期278-291,共14页网络空间安全科学与技术(英文)
摘 要:Malware analysis is a task of utmost importance in cyber-security.Two approaches exist for malware analysis:static and dynamic.Modern malware uses an abundance of techniques to evade both dynamic and static analysis tools.Current dynamic analysis solutions either make modifications to the running malware or use a higher privilege component that does the actual analysis.The former can be easily detected by sophisticated malware while the latter often induces a significant performance overhead.We propose a method that performs malware analysis within the context of the OS itself.Furthermore,the analysis component is camouflaged by a hypervisor,which makes it completely transparent to the running OS and its applications.The evaluation of the system’s efficiency suggests that the induced performance overhead is negligible.
关 键 词:DYNAMIC ANALYSIS TRANSPARENT
分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:18.219.89.207