Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Malicious software detector concept drift resisting method based on generative adversarial network

A malware and concept drift technology, applied in the field of network security, can solve the problem of not being able to solve the concept drift of malicious samples well, and achieve the effect of improving the anti-concept drift performance, resisting aging, and solving concept drift.

Active Publication Date: 2020-06-09
河南信息安全研究院有限公司
View PDF5 Cites 23 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The present invention aims at the existing anti-sample drift method that does not consider the impact of time deviation, so that the problem of concept drift caused by malicious samples changing with time cannot be better solved, and proposes a malware detection based on generative adversarial networks Anti-concept Drift Method

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Malicious software detector concept drift resisting method based on generative adversarial network
  • Malicious software detector concept drift resisting method based on generative adversarial network
  • Malicious software detector concept drift resisting method based on generative adversarial network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] The present invention will be further explained below in conjunction with the accompanying drawings and specific embodiments:

[0037] like figure 1 As shown, a generative adversarial network-based malware detector anti-concept drift method includes:

[0038] Step S101: extract the API call sequence of malicious code from the sandbox, and convert the API call sequence into a feature vector through word2vec;

[0039] Step S102: training an auxiliary classification generative adversarial network based on the feature vector;

[0040] Step S103 : generating a malicious code API calling sequence by using the trained auxiliary classification generative adversarial network, adding the actual malicious code API calling sequence at the same time, and training through the GRU network to obtain a malware detector;

[0041] Step S104: Use the detection result of the malware detector as a training set, retrain the auxiliary classification generative adversarial network, and retrai...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention belongs to the technical field of network security, and discloses a malicious software detector concept drift resistance method based on a generative adversarial network, which comprisesthe following steps: extracting an API (Application Program Interface) call sequence of malicious codes from a sandbox, and converting the API call sequence into a feature vector through word2vec; training an auxiliary classification generative adversarial network based on the feature vector; using the trained auxiliary classification generative adversarial network to generate a malicious code API call sequence, adding an actual malicious code API call sequence, and training through a GRU network to obtain a malicious software detector; and taking a detection result of the malicious softwaredetector as a training set, retraining the auxiliary classification generative adversarial network, and retraining the malicious software detector to improve the concept drift resistance of the malicious software detector. The aging of the detector can be effectively resisted.

Description

technical field [0001] The invention belongs to the technical field of network security, and in particular relates to an anti-concept drift method for a malware detector based on a generative confrontation network. Background technique [0002] The network environment is becoming more and more complex, and various attack methods emerge in an endless stream. As an important carrier of network attacks, malware has various functions such as destruction, theft, and extortion. According to the Kaspersky Annual Report 2019 (https: / / securelist.com / ksb-2019 / "Kaspersky Security Bulletin 2019"), the number of new malware detected in 2019 reached approximately 24 million Security poses a serious threat. Therefore, it is of great significance to be able to effectively detect malware. [0003] The conventional means of defending against malware at this stage is usually the use of commercial anti-virus software. Commercial antivirus software uses signature-based methods or heuristic-ba...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56G06F21/53G06N3/08
CPCG06F21/56G06F21/53G06N3/08
Inventor 戴裕昇黄长江戴青
Owner 河南信息安全研究院有限公司
Features
  • Generate Ideas
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com