Investigation of structural specificities of malicious documents by Data Mining
Informacionnye tehnologii i vyčislitelnye sistemy, no. 2 (2012), pp. 76-92
Cet article a éte moissonné depuis la source Math-Net.Ru
The paper is devoted to a issue of detecting malicious documents with Data Mining methods. A static detection approach based on search for specific structural and content features is proposed. The approach’s evaluation is done by using Portable Document Format sample files. During the experiments we evaluate both particular classification methods and combined classification ways using separate feature spaces for learning of included classifiers.
Keywords:
information security, malicious documents, Data Mining.
Mots-clés : Portable Document Format, classification
Mots-clés : Portable Document Format, classification
@article{ITVS_2012_2_a8,
author = {D. V. Komashinskiy and I. V. Kotenko},
title = {Investigation of structural specificities of malicious documents by {Data} {Mining}},
journal = {Informacionnye tehnologii i vy\v{c}islitelnye sistemy},
pages = {76--92},
year = {2012},
number = {2},
language = {ru},
url = {http://geodesic.mathdoc.fr/item/ITVS_2012_2_a8/}
}
TY - JOUR AU - D. V. Komashinskiy AU - I. V. Kotenko TI - Investigation of structural specificities of malicious documents by Data Mining JO - Informacionnye tehnologii i vyčislitelnye sistemy PY - 2012 SP - 76 EP - 92 IS - 2 UR - http://geodesic.mathdoc.fr/item/ITVS_2012_2_a8/ LA - ru ID - ITVS_2012_2_a8 ER -
D. V. Komashinskiy; I. V. Kotenko. Investigation of structural specificities of malicious documents by Data Mining. Informacionnye tehnologii i vyčislitelnye sistemy, no. 2 (2012), pp. 76-92. http://geodesic.mathdoc.fr/item/ITVS_2012_2_a8/