关键词:行为模式; 主动防御; 模式识别; 虚拟执行
Novel virus active defense technique and detection algorithm
CHEN Xuhao, WANG Zhiying, REN Jiangchun, ZHENG Zhong, HUANG He
(School of Computer, National University of Defense Technology, Changsha 410073, China)
Abstract:Based on virus behavior analysis and pattern recognition technology, this paper proposed an active defense strategy with user behavior patterns as the core, which could identify the user’s normal behavior, and could find that the system was attacked by malware when abnormal behavior was detected. This strategy was independent ofthe proliferation of malware which made defense technology not be subject to malicious programs. It implemented this defense strategy, and did experiments in a virtual execution environment. The results show that this strategy has a high rate in recognition of the unknown virus.......