Inicio  /  Applied Sciences  /  Vol: 9 Par: 22 (2019)  /  Artículo
ARTÍCULO
TITULO

Decision-Making Method for Estimating Malware Risk Index

Dohoon Kim    

Resumen

Most recent cyberattacks have employed new and diverse malware. Various static and dynamic analysis methods are being introduced to detect and defend against these attacks. The malware that is detected by these methods includes advanced present threat (APT) attacks, which allow additional intervention by attackers. Such malware presents a variety of threats (DNS, C&C, Malicious IP, etc.) This threat information used to defend against variants of malicious attacks. However, the intelligence that is detected in this manner is used in the blocking policies of information-security systems. Consequently, it is difficult for staff who perform Computer Emergence Response Team security control to determine the extent to which cyberattacks such as malware are a potential threat. Additionally, it is difficult to use this intelligence to establish long-term defense strategies for specific APT attacks or implement intelligent internal security systems. Therefore, a decision-making model that identifies threat sources and malicious activities (MAs) that occur during the static and dynamic analysis of various types of collected malware and performs machine learning based on a quantitative analysis of these threat sources and activities is proposed herein. This model estimates malware risk indices (MRIs) in detail using an analytic hierarchy process to analyze malware and the probabilities of MAs. The analysis results were significant, as the consistency index of the estimated MRI values for 51300 types of malware, which were collected during a specific control period, was maintained at <0.051.

Palabras claves

 Artículos similares

       
 
Sean Pascoe    
Data envelopment analysis (DEA) has been proposed as a means of assessing alternative management options when there are multiple criteria with multiple indicators each. While the method has been widely applied, the implications of how the method is appli... ver más
Revista: Algorithms

 
Veenu Tripathi and Stefano Caizzone    
Accurate navigation is a crucial asset for safe aviation operation. The GNSS (Global Navigation Satellite System) is set to play an always more important role in aviation but needs to cope with the risk of interference, possibly causing signal disruption... ver más
Revista: Aerospace

 
Xiaobang Wang, Yang Yu, Siyu Li, Jie Zhang and Zhijie Liu    
The Revolving Floating Crane (RFC) is a specialized engineering vessel crucial for offshore lifting operations, such as offshore platform construction and deep-water salvaging. It boasts impressive lifting capacity, good adaptability to various environme... ver más

 
Jiashuo Yu, Hanbin Xiao, Feiyue Sun, Likang Yan and Min Liu    
In the port domain, quayside container cranes are an indispensable component of maritime freight transport. These cranes are not only costly but also associated with safety accidents that often result in casualties and property loss, severely impacting p... ver más
Revista: Applied Sciences

 
Na Wei, Yuxin Peng, Kunming Lu, Guixing Zhou, Xingtao Guo and Minghui Niu    
The parallel reservoirs in the upper reach of the Hanjiang River are key projects for watershed management, development, and protection. The optimal operation of parallel reservoirs is a multiple-stage, multiple-objective, and multiple-decision attribute... ver más
Revista: Applied Sciences