JSOBFUS DETECTOR: A BINARY PSO-BASED ONE-CLASS CLASSIFIER ENSEMBLE TO DETECT OBFUSCATED
JAVASCRIPT CODE

Q: How can I download an article?

To download an article from SID, first log in to the site, search for the article title, and click on the 'Download Article' option.

Q: How can I download an ISI article?

To download an ISI article on SID, enter the keyword or article title in the search bar, view the relevant results, click on the desired article, and select the 'Download Article' option.

Q: How can I access the SID database?

To access the SID database, visit SID.ir, create an account, and log in to access scientific resources.

Q: Is downloading articles from SID free?

Some articles on SID are available for free, while others require payment. Details are specified on the article's page.

Jodavi Mehran; ABADI MAHDI; Parhizkar Elham

مرکز اطلاعات علمی Scientific Information Database (SID) - Trusted Source for Research and Academic Resources

Seminar Paper

Paper Information

Seminar: INTERNATIONAL SYMPOSIUM ON ARTIFICIAL INTELLIGENCE AND SIGNAL PROCESSING (AISP)
Year:2015 | Issue:1

Download Full-Text

View:

275

Download:

138

Information Seminar Paper

Title

JSOBFUS DETECTOR: A BINARY PSO-BASED ONE-CLASS CLASSIFIER ENSEMBLE TO DETECT OBFUSCATED JAVASCRIPT CODE

Author(s)

Jodavi Mehran | ABADI MAHDI | Parhizkar Elham | Issue Writer Certificate

Keywords

OBFUSCATED JAVASCRIPT CODE

STATIC ANALYSIS

CLASSIFIER ENSEMBLE

ONE-CLASS CLASSIFIER

ENSEMBLE PRUNING

PARTICLE SWARM OPTIMIZATION

Abstract

JAVASCRIPT CODE OBFUSCATION HAS BECOME A MAJOR TECHNIQUE USED BY MALWARE WRITERS TO EVADE STATIC ANALYSIS TECHNIQUES. OVER THE PAST YEARS, A NUMBER OF DYNAMIC ANALYSIS TECHNIQUES HAVE BEEN PROPOSED TO DETECT OBFUSCATED MALICIOUS JAVASCRIPT CODE AT RUNTIME. HOWEVER, BECAUSE OF THEIR RUNTIME OVERHEADS, THESE TECHNIQUES ARE SLOW AND THUS NOT WIDELY USED IN PRACTICE. ON THE OTHER HAND, SINCE A LARGE QUANTITY OF BENIGN JAVASCRIPT CODE IS OBFUSCATED TO PROTECT INTELLECTUAL PROPERTY, IT IS NOT EFFECTIVE TO USE THE INTRINSIC FEATURES OF OBFUSCATED JAVASCRIPT CODE FOR STATIC ANALYSIS PURPOSES. THEREFORE, WE ARE FORCED TO DISTINGUISH BETWEEN OBFUSCATED AND NON-OBFUSCATED JAVASCRIPT CODE SO THAT WE CAN DEVISE AN EFFICIENT AND EFFECTIVE ANALYSIS TECHNIQUE TO DETECT MALICIOUS JAVASCRIPT CODE. IN THIS PAPER, WE ADDRESS THIS ISSUE BY PRESENTING JSOBFUS DETECTOR, A NOVEL ONE-CLASS CLASSIFIER ENSEMBLE TO DETECT OBFUSCATED JAVASCRIPT CODE. TO CONSTRUCT THE CLASSIFIER ENSEMBLE, WE APPLY A BINARY PARTICLE SWARM OPTIMIZATION (PSO) ALGORITHM, CALLED PARTICLE PRUNER, ON AN INITIAL ENSEMBLE OF ONE-CLASS SVM CLASSIFIERS TO FIND A SUB-ENSEMBLE WHOSE MEMBERS ARE BOTH ACCURATE AND HAVE DIVERSITY IN THEIR OUTPUTS. WE EVALUATE JSOBFUSDETECTOR USING A DATASET OF OBFUSCATED AND NON-OBFUSCATED JAVASCRIPT CODE. THE EXPERIMENTAL RESULTS SHOW THAT JSOBFUSDETECTOR CAN ACHIEVE ABOUT 97% PRECISION, 91% RECALL, AND 94% F-MEASURE. ...

Multimedia

No record.

Cites

No record.

References

No record.

Cite

APA: Copy

Jodavi, Mehran, ABADI, MAHDI, & Parhizkar, Elham. (2015). JSOBFUS DETECTOR: A BINARY PSO-BASED ONE-CLASS CLASSIFIER ENSEMBLE TO DETECT OBFUSCATED JAVASCRIPT CODE . INTERNATIONAL SYMPOSIUM ON ARTIFICIAL INTELLIGENCE AND SIGNAL PROCESSING (AISP). SID. https://sid.ir/paper/927428/en

Vancouver: Copy

Jodavi Mehran, ABADI MAHDI, Parhizkar Elham. JSOBFUS DETECTOR: A BINARY PSO-BASED ONE-CLASS CLASSIFIER ENSEMBLE TO DETECT OBFUSCATED JAVASCRIPT CODE . 2015. Available from: https://sid.ir/paper/927428/en

IEEE: Copy

Mehran Jodavi, MAHDI ABADI, and Elham Parhizkar, “JSOBFUS DETECTOR: A BINARY PSO-BASED ONE-CLASS CLASSIFIER ENSEMBLE TO DETECT OBFUSCATED JAVASCRIPT CODE ,” presented at the INTERNATIONAL SYMPOSIUM ON ARTIFICIAL INTELLIGENCE AND SIGNAL PROCESSING (AISP). 2015, [Online]. Available: https://sid.ir/paper/927428/en

Related Journal Papers

No record.

Related Seminar Papers

No record.

Related Plans

No record.

Recommended Workshops