Standard
A frequency approach to creation of executable file signatures for their identification. / Salakhutdinova, Kseniya; Lebedev, Ilya; Krivtsova, Irina; Bazhayev, Nurzhan; Sukhoparov, Mikhail; Smimov, Pavel; Markelov, Dmitry; Davvdov, Alexander; Pecherkin, Sergey; Kolcherin, Dmitry; Shaparenko, Yuriy; Iskanderov, Yuriy.
11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings. Institute of Electrical and Electronics Engineers Inc., 2019. 8687105 (11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings).
Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Research › peer-review
Harvard
Salakhutdinova, K
, Lebedev, I, Krivtsova, I, Bazhayev, N, Sukhoparov, M, Smimov, P, Markelov, D, Davvdov, A, Pecherkin, S, Kolcherin, D, Shaparenko, Y & Iskanderov, Y 2019,
A frequency approach to creation of executable file signatures for their identification. in
11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings., 8687105, 11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings, Institute of Electrical and Electronics Engineers Inc., 11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017, Moscow, Russian Federation,
20/09/17.
https://doi.org/10.1109/ICAICT.2017.8687105APA
Salakhutdinova, K.
, Lebedev, I., Krivtsova, I., Bazhayev, N., Sukhoparov, M., Smimov, P., Markelov, D., Davvdov, A., Pecherkin, S., Kolcherin, D., Shaparenko, Y., & Iskanderov, Y. (2019).
A frequency approach to creation of executable file signatures for their identification. In
11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings [8687105] (11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings). Institute of Electrical and Electronics Engineers Inc..
https://doi.org/10.1109/ICAICT.2017.8687105Vancouver
Author
Salakhutdinova, Kseniya
; Lebedev, Ilya ; Krivtsova, Irina ; Bazhayev, Nurzhan ; Sukhoparov, Mikhail ; Smimov, Pavel ; Markelov, Dmitry ; Davvdov, Alexander ; Pecherkin, Sergey ; Kolcherin, Dmitry ; Shaparenko, Yuriy ; Iskanderov, Yuriy. /
A frequency approach to creation of executable file signatures for their identification. 11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings. Institute of Electrical and Electronics Engineers Inc., 2019. (11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings).
BibTeX
@inproceedings{aa37a3fc3b25443784bce892e0b7ef67,
title = "A frequency approach to creation of executable file signatures for their identification",
abstract = "The paper presents methods of executable file signature creation based on frequency distributions of their informative features to be applied for program identification. Identification here should be understood as a process of file recognition by establishing its coincidence with a particular program. A new approach to creation of the archive of program signatures, both in terms of byte-frequency distribution of a program's binary code, and in terms of frequency distribution of assembler commands in their disassembler codes, is presented. The new method of executable file identification is offered and the results of experiments on their identification using a statistical criterion of ∗-Fisher and analysis of the slope are provided. The proposed method can be used to audit data-storage medium.",
keywords = "byte-frequence response, Information security",
author = "Kseniya Salakhutdinova and Ilya Lebedev and Irina Krivtsova and Nurzhan Bazhayev and Mikhail Sukhoparov and Pavel Smimov and Dmitry Markelov and Alexander Davvdov and Sergey Pecherkin and Dmitry Kolcherin and Yuriy Shaparenko and Yuriy Iskanderov",
year = "2019",
month = apr,
day = "10",
doi = "10.1109/ICAICT.2017.8687105",
language = "English",
series = "11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
booktitle = "11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings",
address = "United States",
note = "11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 ; Conference date: 20-09-2017 Through 22-09-2017",
}
RIS
TY - GEN
T1 - A frequency approach to creation of executable file signatures for their identification
AU - Salakhutdinova, Kseniya
AU - Lebedev, Ilya
AU - Krivtsova, Irina
AU - Bazhayev, Nurzhan
AU - Sukhoparov, Mikhail
AU - Smimov, Pavel
AU - Markelov, Dmitry
AU - Davvdov, Alexander
AU - Pecherkin, Sergey
AU - Kolcherin, Dmitry
AU - Shaparenko, Yuriy
AU - Iskanderov, Yuriy
PY - 2019/4/10
Y1 - 2019/4/10
N2 - The paper presents methods of executable file signature creation based on frequency distributions of their informative features to be applied for program identification. Identification here should be understood as a process of file recognition by establishing its coincidence with a particular program. A new approach to creation of the archive of program signatures, both in terms of byte-frequency distribution of a program's binary code, and in terms of frequency distribution of assembler commands in their disassembler codes, is presented. The new method of executable file identification is offered and the results of experiments on their identification using a statistical criterion of ∗-Fisher and analysis of the slope are provided. The proposed method can be used to audit data-storage medium.
AB - The paper presents methods of executable file signature creation based on frequency distributions of their informative features to be applied for program identification. Identification here should be understood as a process of file recognition by establishing its coincidence with a particular program. A new approach to creation of the archive of program signatures, both in terms of byte-frequency distribution of a program's binary code, and in terms of frequency distribution of assembler commands in their disassembler codes, is presented. The new method of executable file identification is offered and the results of experiments on their identification using a statistical criterion of ∗-Fisher and analysis of the slope are provided. The proposed method can be used to audit data-storage medium.
KW - byte-frequence response
KW - Information security
UR - http://www.scopus.com/inward/record.url?scp=85064980673&partnerID=8YFLogxK
U2 - 10.1109/ICAICT.2017.8687105
DO - 10.1109/ICAICT.2017.8687105
M3 - Conference contribution
AN - SCOPUS:85064980673
T3 - 11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings
BT - 11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017 - Proceedings
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 11th IEEE International Conference on Application of Information and Communication Technologies, AICT 2017
Y2 - 20 September 2017 through 22 September 2017
ER -
