International audienceThe number of malware is growing fast recently. Traditional malware detectors based on signature matching and code emulation are easy to bypass. To overcome this problem, model-checking appears as an efficient approach that has been extensively applied for malware detection in recent years. Pushdown systems were proposed as a natural model for programs, as they allow to take into account the program's stack into the model. CARET and BCARET were proposed as formalisms for malicious behavior specification since they can specify properties that require matchings of calls and returns which is crucial for malware detection. In this paper, we propose to use BCARET for malicious behavior specification. Since BCARET formulas f...
Model checking software consists of two steps: model generation and model checking. A model is often...
A malware detector is a system that attempts to determine whether a program has malicious intent. I...
A malware detector is a system that attempts to de-termine whether a program has malicious intent. I...
The number of malware is growing significantly fast. Traditional malware detectors based on signatur...
Abstract. Over the past decade, malware costs more than $10 billion every year and the cost is still...
Abstract—Although recent estimates are speaking of 200,000 different viruses, worms, and Trojan hors...
International audienceWith the huge impact that internet is having in our daily life, it is becoming...
International audiencePushdown Systems (PDSs) are a natural model for sequential programs with (recu...
Abstract. This work is a weighted generalization of the abstraction based analysis tech-nique we pre...
Malware detectors require a specification of malicious behav-ior. Typically, these specifications ar...
International audienceWe present an approach for proactive malware detection by working on an abstra...
Abstract. We present an approach for proactive malware detection working by abstraction of program b...
Abstract. We propose a formal approach for the detection of high-level malware behaviors. Our techni...
The detection of malware has been an active area of research for a long period of time. In today’s w...
A malware detection model based on a negative selection algorithm with penalty factor (NSAPF) is pro...
Model checking software consists of two steps: model generation and model checking. A model is often...
A malware detector is a system that attempts to determine whether a program has malicious intent. I...
A malware detector is a system that attempts to de-termine whether a program has malicious intent. I...
The number of malware is growing significantly fast. Traditional malware detectors based on signatur...
Abstract. Over the past decade, malware costs more than $10 billion every year and the cost is still...
Abstract—Although recent estimates are speaking of 200,000 different viruses, worms, and Trojan hors...
International audienceWith the huge impact that internet is having in our daily life, it is becoming...
International audiencePushdown Systems (PDSs) are a natural model for sequential programs with (recu...
Abstract. This work is a weighted generalization of the abstraction based analysis tech-nique we pre...
Malware detectors require a specification of malicious behav-ior. Typically, these specifications ar...
International audienceWe present an approach for proactive malware detection by working on an abstra...
Abstract. We present an approach for proactive malware detection working by abstraction of program b...
Abstract. We propose a formal approach for the detection of high-level malware behaviors. Our techni...
The detection of malware has been an active area of research for a long period of time. In today’s w...
A malware detection model based on a negative selection algorithm with penalty factor (NSAPF) is pro...
Model checking software consists of two steps: model generation and model checking. A model is often...
A malware detector is a system that attempts to determine whether a program has malicious intent. I...
A malware detector is a system that attempts to de-termine whether a program has malicious intent. I...