Analysis of Malware Detection and Signature Generation Using a Novel Hybrid Approach

Dugyala, Raman; Reddy, N. M.; Viswanadhula, Uma Maheswari; Mohammad, Gouse Baig; Alenezi, Fayadh; Polat, Kemal

doi:10.1155/2022/5852412

Cited by 9 publications

(6 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…RFID provides early information on RFID-related objects and enables improved and updated process information on the links with the RFID solution. e number of errors could be reduced further through better information about objects in health processes [1], [2][3][4][5][6][7][8].…”

Section: Introductionmentioning

confidence: 99%

“…D-Quark algorithm. (i) Input: param, r′′, s′, C′ Output: signature, whether valid or invalid(1) User B computers R � θ(r '' )mod n (2) Calculate ω � (s′) − 1 mod n (3) u 1 � H(D(C′))mod n and u 2 � Rmod n (4) Calculate V � ω * [u 1 * D + u 2 * PU a ] (5) If V � � r′′, in that case, the signature is valid; if not, it's not validALGORITHM 4: Algorithm for verifying signature identity. (i) An algorithm for encrypting HEC RFID system (ii) Input: param, PR a , m, PU b Output: C (1) Compute Y � PR a .PU b (2) Return C � m + Y { } Encryption algorithm.…”

mentioning

confidence: 99%

See 1 more Smart Citation

Mechanism of Internet of Things (IoT) Integrated with Radio Frequency Identification (RFID) Technology for Healthcare System

Mohammad¹,

Shitharth

Syed

et al. 2022

Mathematical Problems in Engineering

Self Cite

View full text Add to dashboard Cite

Radio frequency identification (RFID) technology has already demonstrated its use. RFID is used in many productions for different applications, for example, apparatus chasing, personal and vehicle access panels, logistics, baggage, and safety items in departmental stores. The main benefits of RFID are optimizing resources, quality customer service, improved accuracy, and efficient business and healthcare procedures. In addition, RFID can help to recognize appropriate information and help advance the probability of objects for certain functions. Nevertheless, RFID components need to be studied for use in healthcare. Antennas, tags, and readers are the main components of RFID. The study of these elements provides an understanding of the usage and integration of these components in healthcare environments. The security of the patient is now a global alarm for public health, particularly among older people who need integrated and technologically integrated physiological health monitoring systems to monitor medical needs and manage them. This paper proposes using Internet of Things (IoT) and RFID tags as an effective healthcare monitoring system. In this method, we utilize RFID dual-band protocols that are useful for identifying individual persons and are used to monitor body information using high frequency. The patient’s physiological data are monitored and collected by sensors to recognize the patient, using an RFID tag. The IoT-based RFID healthcare provides the elderly and people with physiological information. The aim is also to secure patient health records using the signing algorithm based on the hyperelliptic curve (HEC) and to provide the physician with access to health information for patients. Furthermore, the confidentiality of the medical records for patients of variable length is provided. The evaluation reveals the algorithm proposed for optimum health care with different genus curves.

show abstract

Section: Introductionmentioning

confidence: 99%

mentioning

confidence: 99%

Mechanism of Internet of Things (IoT) Integrated with Radio Frequency Identification (RFID) Technology for Healthcare System

Mohammad¹,

Shitharth

Syed

et al. 2022

Mathematical Problems in Engineering

Self Cite

View full text Add to dashboard Cite

show abstract

“…Modern malware, with its ability to mimic benign behavior or effectively conceal its malicious activities, often eludes the heuristic analysis. This limitation is primarily due to the heuristic methods' reliance on predefined behavioral rules and patterns, which may not encompass the innovative tactics employed by new malware strains (Dugyala et al 2022).…”

Section: Review On Detection Approaches Of Obfuscated Malware In Memo...mentioning

confidence: 99%

Enhanced detection of obfuscated malware in memory dumps: a machine learning approach for advanced cybersecurity

Hossain,

Islam

2024

Cybersecurity

View full text Add to dashboard Cite

In the realm of cybersecurity, the detection and analysis of obfuscated malware remain a critical challenge, especially in the context of memory dumps. This research paper presents a novel machine learning-based framework designed to enhance the detection and analytical capabilities against such elusive threats for binary and multi type’s malware. Our approach leverages a comprehensive dataset comprising benign and malicious memory dumps, encompassing a wide array of obfuscated malware types including Spyware, Ransomware, and Trojan Horses with their sub-categories. We begin by employing rigorous data preprocessing methods, including the normalization of memory dumps and encoding of categorical data. To tackle the issue of class imbalance, a Synthetic Minority Over-sampling Technique is utilized, ensuring a balanced representation of various malware types. Feature selection is meticulously conducted through Chi-Square tests, mutual information, and correlation analyses, refining the model’s focus on the most indicative attributes of obfuscated malware. The heart of our framework lies in the deployment of an Ensemble-based Classifier, chosen for its robustness and effectiveness in handling complex data structures. The model’s performance is rigorously evaluated using a suite of metrics, including accuracy, precision, recall, F1-score, and the area under the ROC curve (AUC) with other evaluation metrics to assess the model’s efficiency. The proposed model demonstrates a detection accuracy exceeding 99% across all cases, surpassing the performance of all existing models in the realm of malware detection.

show abstract

“…These signatures bear the indicators of compromise inside their code, digital footsteps, or signatures. Technical indicators are identified; for example, to determine whether that file is maliciousfile name, hash values, strings like Internet Protocol (IP) addresses, domains, and file header data can be used [8].…”

Section: Figure 1 Types Of Malware Analysismentioning

confidence: 99%

“…• Binary Cross-Entropy (BCE) Loss: As shown in equation (8), it is calculated as the negative log-likelihood of the predicted probability distribution over the binary labels, given the true labels. It measures the difference between the predicted probability distribution and the actual probability distribution of the binary labels and penalizes the model more heavily for larger deviations.…”

Section: (5)mentioning

confidence: 99%

Android Malware Detection by Correlated Real Permission Couples Using FP Growth Algorithm and Neural Networks

Banik,

Singh

2023

IEEE Access

View full text Add to dashboard Cite

In the current internet era, where mobile devices are ubiquitous and often hold sensitive personal and corporate data, Android malware analysis is crucial to protect against the increasing sophistication and prevalence of mobile-based cyberattacks. This article proposes an innovative approach to Android malware detection using real permissions features extracted from Android code. This approach is unique among existing literature because, there for most cases, the declared permissions are being used, which is different from the real permission used in Android apps. Here, step-by-step guidelines have been elaborated to perform reverse engineering in any Android application package (APK) to extract the real permission feature from the Android disassembled code. After that, the most frequent & correlated pairs of real permissions were identified using the Frequent Pattern (FP) Growth algorithm. Thereafter, the existence of those identified real permission couples was checked and fed into a multi-layered, K-fold crossvalidated neural network model to predict whether an APK is malware or benignware. Simultaneously, five other traditional machine learning models have also been applied to benchmark the results. The outcome of these models is measured with various well-known metrics like Accuracy, Precision, Recall, Loss, Specificity, F1 Score, Receiver Operating Characteristic (ROC) curve, Negative Predictive Value, and Mathew's Correlation Coefficient. The experimental evaluation of the proposed methodology shows better performance on the well-known Drebin dataset as well as on the last 5 years customized dataset with an accuracy of over 96%.

show abstract

Analysis of Malware Detection and Signature Generation Using a Novel Hybrid Approach

Cited by 9 publications

References 27 publications

Mechanism of Internet of Things (IoT) Integrated with Radio Frequency Identification (RFID) Technology for Healthcare System

Mechanism of Internet of Things (IoT) Integrated with Radio Frequency Identification (RFID) Technology for Healthcare System

Enhanced detection of obfuscated malware in memory dumps: a machine learning approach for advanced cybersecurity

Android Malware Detection by Correlated Real Permission Couples Using FP Growth Algorithm and Neural Networks

Contact Info

Product

Resources

About