4.4 Article Proceedings Paper

An opcode-based technique for polymorphic Internet of Things malware detection

CONCURRENCY AND COMPUTATION-PRACTICE & EXPERIENCE (2020)

Get Full Text
Add to Collection

Journal

CONCURRENCY AND COMPUTATION-PRACTICE & EXPERIENCE
Volume 32, Issue 6, Pages -

Publisher

WILEY
DOI: 10.1002/cpe.5173

Keywords

IoT malware; IoT security; malware detection; polymorphic malware

Categories

Computer Science, Software Engineering Computer Science, Theory & Methods

Ask authors/readers for more resources

Protocol

Community support

Reagent

Community support

The increasing popularity of Internet of Things (IoT) devices makes them an attractive target for malware authors. In this paper, we use sequential pattern mining technique to detect most frequent opcode sequences of malicious IoT applications. Detected maximal frequent patterns (MFP) of opcode sequences can be used to differentiate malicious from benign IoT applications. We then evaluate the suitability of MFPs as a classification feature for K nearest neighbors (KNN), support vector machines (SVM), multilayer perceptron (MLP), AdaBoost, decision tree, and random forest classifier. Specifically, we achieve an accuracy rate of 99% in the detection of unseen IoT malware. We also demonstrate the utility of our approach in detecting polymorphed IoT malware samples.

Authors

I am an author on this paper
Click your name to claim this paper and add it to your profile.

Reviews

Primary Rating

4.4
Not enough ratings

Secondary Ratings

Novelty
-
Significance
-
Scientific rigor
-
Rate this paper

Recommended

No Data Available
No Data Available
Webinars Posters Questions Hubs Funding Journals Papers Connect Collections Reviewers About Us FAQs Mobile App Privacy Policy Terms of Use
© Peeref 2019-2024. All rights reserved.