Swarm and Evolutionary Computation ( IF 8.2 ) Pub Date : 2018-05-21 , DOI: 10.1016/j.swevo.2018.05.003 Ivan Zelinka , Swagatam Das , Lubomir Sikora , Roman Šenkeřík
In this article, we outline a possible dynamics, structure, and a behavior of a hypothetical (up to now) swarm malware as a background for a future antimalware system. We suggest how to capture and visualize behavior of such malware when it walks through the file system of an operating system. The swarm virus prototype, designed here, mimics a swarm system behavior and thus follows the main idea underlying the swarm intelligence algorithms. The information of the prototype's behavior is stored and visualized in the form of a complex network, reflecting virus communication and swarm behavior. The network nodes are then individual virus instances. The network has certain properties associated with its structure that can be used by the virus instances in its activities like locating target and executing payload on the right object. As the paper shows, the swarm behavior pattern can be incorporated also to an antimalware systems, and can be analyzed for a future computer system protection.
中文翻译:
群病毒-下一代病毒和防病毒范例?
在本文中,我们概述了一种假想的(到目前为止)大量恶意软件的动态,结构和行为,以此作为将来的反恶意软件系统的背景。我们建议当恶意软件遍历操作系统的文件系统时,如何捕获和可视化此类恶意软件的行为。这里设计的群病毒原型模仿群系统的行为,因此遵循群智能算法背后的主要思想。原型行为的信息以复杂网络的形式存储和可视化,反映了病毒的通信和群行为。这样,网络节点就是各个病毒实例。网络具有与其结构相关联的某些属性,病毒实例可以在其活动中使用这些属性,例如定位目标并在正确的对象上执行有效负载。