%0 Journal Article
%T A method for hidden malcode anomaly detection using dynamic control-flow analysis<br>一种利用动态控制流路径分析的隐藏恶意代码异常检测方法
%A PAN Jian-Feng
%A LIU Shou-Qun
%A XI Hong-Sheng
%A TAN Xiao-Bin
%A <br>潘剑锋
%A 刘守群
%A 奚宏生
%A 谭小彬
%J 中国科学院研究生院学报
%D 2010
%I 
%X The present study proposes a method for hidden malcode detection based on the analysis of dynamic control-flow. First we recorded the malcode-related control-flow paths of program,and then the control-flow paths were analyzed,by calling tree match algorithm,to detect the hidden malcode in the system. The experiments show that this method can detect hidden malcode efficiently at a high detection rate and with low false positive,and thus it can be applied to malcode detection on operating systems.
%K malcode
%K anomaly detection
%K dynamic control-flow
%K call tree edit distance<br>恶意代码
%K 异常检测
%K 动态控制流
%K 调用树编辑距离
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=B5EDD921F3D863E289B22F36E70174A7007B5F5E43D63598017D41BB67247657&cid=B47B31F6349F979B&jid=67CDFDECD959936E166E0F72DE972847&aid=B42E721A0A95CA6581A4F8FA906270D4&yid=140ECF96957D60B2&vid=DB817633AA4F79B9&iid=CA4FD0336C81A37A&sid=09E495F616948E78&eid=475189FCB44F11F6&journal_id=1002-1175&journal_name=中国科学院研究生院学报&referenced_num=0&reference_num=11