Design of software security detection system based on system call sequences

Jingfeng Xue; Changzhen Hu; Kunsheng Wang; Rui Ma; Zhian Fan

Design of software security detection system based on system call sequences

Jingfeng Xue^*, Changzhen Hu, Kunsheng Wang, Rui Ma, Zhian Fan

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Citation (Scopus)

Abstract

The sequences of system calls can indicate the running behavior feature of application software, so it can be used in software security detection. In this paper, by researching and analyzing system call sequences in the process of software execution, a software security detection system based on system call sequences is designed. Basic system call sequences are mined by association rules, and then they are transformed to equivalent call sequence set to build knowledge base for software security detection. The experiment shows detection capability of the detection system is better by sufficient training data.

Original language	English
Title of host publication	2nd International Conference on Software Engineering and Data Mining, SEDM 2010
Pages	97-100
Number of pages	4
Publication status	Published - 2010
Event	2nd International Conference on Software Engineering and Data Mining, SEDM 2010 - Chengdu, China Duration: 23 Jun 2010 → 25 Jun 2010

Publication series

Name	2nd International Conference on Software Engineering and Data Mining, SEDM 2010

Conference

Conference	2nd International Conference on Software Engineering and Data Mining, SEDM 2010
Country/Territory	China
City	Chengdu
Period	23/06/10 → 25/06/10

Keywords

Association rules
Detection system
Software security
System calls

Cite this

@inproceedings{13ddf19b0d6842749fe754f7b58a06c6,

title = "Design of software security detection system based on system call sequences",

abstract = "The sequences of system calls can indicate the running behavior feature of application software, so it can be used in software security detection. In this paper, by researching and analyzing system call sequences in the process of software execution, a software security detection system based on system call sequences is designed. Basic system call sequences are mined by association rules, and then they are transformed to equivalent call sequence set to build knowledge base for software security detection. The experiment shows detection capability of the detection system is better by sufficient training data.",

keywords = "Association rules, Detection system, Software security, System calls",

author = "Jingfeng Xue and Changzhen Hu and Kunsheng Wang and Rui Ma and Zhian Fan",

year = "2010",

language = "English",

isbn = "9788988678213",

series = "2nd International Conference on Software Engineering and Data Mining, SEDM 2010",

pages = "97--100",

booktitle = "2nd International Conference on Software Engineering and Data Mining, SEDM 2010",

note = "2nd International Conference on Software Engineering and Data Mining, SEDM 2010 ; Conference date: 23-06-2010 Through 25-06-2010",

}

Xue, J , Hu, C, Wang, K, Ma, R & Fan, Z 2010, Design of software security detection system based on system call sequences. in 2nd International Conference on Software Engineering and Data Mining, SEDM 2010., 5542943, 2nd International Conference on Software Engineering and Data Mining, SEDM 2010, pp. 97-100, 2nd International Conference on Software Engineering and Data Mining, SEDM 2010, Chengdu, China, 23/06/10.

Design of software security detection system based on system call sequences. / Xue, Jingfeng ; Hu, Changzhen; Wang, Kunsheng et al.
2nd International Conference on Software Engineering and Data Mining, SEDM 2010. 2010. p. 97-100 5542943 (2nd International Conference on Software Engineering and Data Mining, SEDM 2010).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Design of software security detection system based on system call sequences

AU - Xue, Jingfeng

AU - Hu, Changzhen

AU - Wang, Kunsheng

AU - Ma, Rui

AU - Fan, Zhian

PY - 2010

Y1 - 2010

N2 - The sequences of system calls can indicate the running behavior feature of application software, so it can be used in software security detection. In this paper, by researching and analyzing system call sequences in the process of software execution, a software security detection system based on system call sequences is designed. Basic system call sequences are mined by association rules, and then they are transformed to equivalent call sequence set to build knowledge base for software security detection. The experiment shows detection capability of the detection system is better by sufficient training data.

AB - The sequences of system calls can indicate the running behavior feature of application software, so it can be used in software security detection. In this paper, by researching and analyzing system call sequences in the process of software execution, a software security detection system based on system call sequences is designed. Basic system call sequences are mined by association rules, and then they are transformed to equivalent call sequence set to build knowledge base for software security detection. The experiment shows detection capability of the detection system is better by sufficient training data.

KW - Association rules

KW - Detection system

KW - Software security

KW - System calls

UR - http://www.scopus.com/inward/record.url?scp=77956514058&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:77956514058

SN - 9788988678213

T3 - 2nd International Conference on Software Engineering and Data Mining, SEDM 2010

SP - 97

EP - 100

BT - 2nd International Conference on Software Engineering and Data Mining, SEDM 2010

T2 - 2nd International Conference on Software Engineering and Data Mining, SEDM 2010

Y2 - 23 June 2010 through 25 June 2010

ER -

Design of software security detection system based on system call sequences

Abstract

Publication series

Conference

Keywords

Other files and links

Fingerprint

Cite this