Publicação: Malware distributed collection and pre-classification system using honeypot technology
| dc.contributor.author | Grégio, André R. A. | |
| dc.contributor.author | Oliveira, Isabela L. [UNESP] | |
| dc.contributor.author | Santos, Rafael D. C. | |
| dc.contributor.author | Cansian, Adriano M. [UNESP] | |
| dc.contributor.author | DeGeus, Paulo L. | |
| dc.contributor.institution | Universidade Estadual de Campinas (UNICAMP) | |
| dc.contributor.institution | Universidade Estadual Paulista (Unesp) | |
| dc.contributor.institution | São José dos Campos | |
| dc.date.accessioned | 2014-05-27T11:23:55Z | |
| dc.date.available | 2014-05-27T11:23:55Z | |
| dc.date.issued | 2009-06-15 | |
| dc.description.abstract | Malware has become a major threat in the last years due to the ease of spread through the Internet. Malware detection has become difficult with the use of compression, polymorphic methods and techniques to detect and disable security software. Those and other obfuscation techniques pose a problem for detection and classification schemes that analyze malware behavior. In this paper we propose a distributed architecture to improve malware collection using different honeypot technologies to increase the variety of malware collected. We also present a daemon tool developed to grab malware distributed through spam and a pre-classification technique that uses antivirus technology to separate malware in generic classes. © 2009 SPIE. | en |
| dc.description.affiliation | Institute of Computing University of Campinas (UNICAMP), Campinas, SP | |
| dc.description.affiliation | UNESP - Universidade Estadual Paulista Sao Paulo State University Sao Jose do Rio Preto Campus | |
| dc.description.affiliation | Computing and Applied Mathematics Lab. National Institute for Space Research (INPE) São José dos Campos, SP | |
| dc.description.affiliationUnesp | UNESP - Universidade Estadual Paulista Sao Paulo State University Sao Jose do Rio Preto Campus | |
| dc.identifier | http://dx.doi.org/10.1117/12.818310 | |
| dc.identifier.citation | Proceedings of SPIE - The International Society for Optical Engineering, v. 7344. | |
| dc.identifier.doi | 10.1117/12.818310 | |
| dc.identifier.issn | 0277-786X | |
| dc.identifier.lattes | 0095921943345974 | |
| dc.identifier.orcid | 0000-0003-4494-1454 | |
| dc.identifier.scopus | 2-s2.0-66749173635 | |
| dc.identifier.uri | http://hdl.handle.net/11449/71036 | |
| dc.language.iso | eng | |
| dc.relation.ispartof | Proceedings of SPIE - The International Society for Optical Engineering | |
| dc.rights.accessRights | Acesso aberto | |
| dc.source | Scopus | |
| dc.subject | Honeyclients | |
| dc.subject | Honeypots | |
| dc.subject | Information systems security | |
| dc.subject | Malicious software | |
| dc.subject | Malware collection | |
| dc.subject | Computer software | |
| dc.subject | Information management | |
| dc.subject | Information systems | |
| dc.subject | Internet | |
| dc.subject | Intrusion detection | |
| dc.subject | Mining | |
| dc.subject | Computer crime | |
| dc.title | Malware distributed collection and pre-classification system using honeypot technology | en |
| dc.type | Trabalho apresentado em evento | |
| dcterms.license | http://proceedings.spiedigitallibrary.org/ss/TermsOfUse.aspx | |
| dspace.entity.type | Publication | |
| unesp.author.lattes | 0095921943345974[4] | |
| unesp.author.orcid | 0000-0003-4494-1454[4] |