Skip to main content
SpringerLink
Log in

Semi Supervised NLP Based Classification of Malware Documents

  • Conference paper
  • First Online:
Information Systems Security (ICISS 2017)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 10717))

Included in the following conference series:

  • 1066 Accesses

Abstract

Proper classification of the available data into viable Malware classes is very important to analyze the causes, vulnerabilities & intents behind these attacks and to build up systems that are secure from these kinds of attacks. In this paper, we describe an approach that enables us to classify free text documents with good precision and performance. We classify the documents to the malware class that has the highest matching of the characteristics of the document based the ontology model. We have experimented with our integrated approach on a large number of documents and found that it provides a very good classification more precise that than other analysis techniques for documents about malware.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    Here, tf represents term-frequency & idf stands for inverse-domain-frequency.

References

  1. Iannacone, M., Bohn, S., Nakamura, G., Gerth, J., Huffer, K., Bridges, R., Ferragut, E., Goodall, J.: Developing an ontology for cyber security knowledge graphs. In: Proceedings of the 10th Annual Cyber and Information Security Research Conference. CISR 2015, pp. 12:1–12:4 (2015)

    Google Scholar 

  2. IBM: Watson developer cloud. https://natural-language-understanding-demo.mybluemix.net/

  3. Zaki, M.J., Meira Jr., W.: Data Mining and Analysis Fundamental Concepts and Algorithms. Cambridge University Press, Cambridge (2014)

    Google Scholar 

  4. Mulwad, V., Li, W., Joshi, A., Finin, T., Viswanathan, K.: Extracting information about security vulnerabilities from web text. In: Proceedings of the 2011 IEEE/WIC/ACM International Conferences on Web Intelligence and Intelligent Agent Technology. WI-IAT 2011, vol. 3, pp. 257–260 (2011)

    Google Scholar 

  5. Obrst, L., Chase, P., Markeloff, R.: Developing an Ontology of the Cyber Security Domain (2012)

    Google Scholar 

  6. Barnum, S.: Standardizing cyber threat intelligence information with the structured threat information expression. In: MITRE Security (2012). https://stixproject.github.io/

  7. Syed, Z., Padia, A., Mathews, M.L., Finin, T., Joshi, A.: UCO: a unified cybersecurity ontology. In: Proceedings of the AAAI Workshop on Artificial Intelligence for Cyber Security. AAAI Press, February 2016

    Google Scholar 

  8. Trabelsi, S., Plate, H., Abida, A., Aoun, M.M.B., Zouaoui, A., Missaoui, C., Gharbi, S., Ayari, A.: Monitoring software vulnerabilities through social networks analysis. In: SECRYPT, pp. 236–242 (2015)

    Google Scholar 

  9. Trinkle, P.: An Introduction to Unsupervised Document Classification (2009)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Indian Institute of Technology, Mumbai, India

    Mayukh Rath & R. K. Shyamasundar

  2. IBM Research, Bengaluru, India

    Shivali Agarwal

Authors
  1. Mayukh Rath
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Shivali Agarwal
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. R. K. Shyamasundar
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Mayukh Rath .

Editor information

Editors and Affiliations

  1. Indian Institute of Technology Bombay, Mumbai, India

    Rudrapatna K. Shyamasundar

  2. Indian Institute of Technology Bombay, Mumbai, India

    Virendra Singh

  3. Rutgers University, Newark, New Jersey, USA

    Jaideep Vaidya

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Rath, M., Agarwal, S., Shyamasundar, R.K. (2017). Semi Supervised NLP Based Classification of Malware Documents. In: Shyamasundar, R., Singh, V., Vaidya, J. (eds) Information Systems Security. ICISS 2017. Lecture Notes in Computer Science(), vol 10717. Springer, Cham. https://doi.org/10.1007/978-3-319-72598-7_21

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-72598-7_21

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-72597-0

  • Online ISBN: 978-3-319-72598-7

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation