Detection of malicious web pages based on hybrid analysis

被引：21

作者：

Wang, Rong ^{[1
]}

Zhu, Yan ^{[1
]}

Tan, Jiefan ^{[1
]}

Zhou, Binbin ^{[1
]}

机构：

[1] Southwest Jiaotong Univ, Sch Informat Sci & Technol, Chengdu, Sichuan, Peoples R China

来源：

JOURNAL OF INFORMATION SECURITY AND APPLICATIONS | 2017年 / 35卷

关键词：

Malicious web page; Hybrid analysis; !text type='Java']Java[!/text]Script interpretation; Shellcode detection;

D O I：

10.1016/j.jisa.2017.05.008

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Malicious web pages have become an increasingly serious threat to web security in recent years. In this paper, we propose a new detection method that consists of static and dynamic analyses for detecting malicious web pages. Static analysis utilizes classification algorithms in machine learning to identify certain benign and malicious web pages. As a complement to static analysis, dynamic analysis mainly checks the unknown web pages to determine whether they have malicious shellcodes during their execution. Because of the combination of static and dynamic analyses, the proposed detection method achieves high performance, and it has a light weight and is simple to use. (C) 2017 Elsevier Ltd. All rights reserved.

引用

页码：68 / 74

页数：7

共 17 条

[1]

[Anonymous], 2011, Proceedings of the 20th International Conference on World Wide Web, WWW'11, DOI DOI 10.1145/1963405.1963436

[2]

[Anonymous], 2016, Internet security threat report

[3] Selection of relevant features and examples in machine learning [J].

Blum, AL ;

Langley, P .

ARTIFICIAL INTELLIGENCE, 1997, 97 (1-2) :245-271

[4] A survey on feature selection methods [J].

Chandrashekar, Girish ;

Sahin, Ferat .

COMPUTERS & ELECTRICAL ENGINEERING, 2014, 40 (01) :16-28

[5]

Cova M., 2010, Proceedings of the 19th International Conference on World Wide Web, P281

[6] An introduction to ROC analysis [J].

Fawcett, Tom .

PATTERN RECOGNITION LETTERS, 2006, 27 (08) :861-874

[7]

Hall M., 2009, ACM SIGKDD explorations newsletter, V11, P10, DOI [DOI 10.1145/1656274.1656278, 10.1145/1656274.1656278]

[8]

Hall M.A., 1999, P 17 INT C MACHINE L, P359

[9]

Hengya Liu, 2010, 2010 IEEE International Conference on Information Theory and Information Security, P544, DOI 10.1109/ICITIS.2010.5689538

[10] Malicious web content detection by machine learning [J].

Hou, Yung-Tsung ;

Chang, Yimeng ;

Chen, Tsuhan ;

Laih, Chi-Sung ;

Chen, Chia-Mei .

EXPERT SYSTEMS WITH APPLICATIONS, 2010, 37 (01) :55-60

← 1 2 →