| Philippine Information Technology Journal | |
| Comparative Analysis of Combinations of Dimension Reduction and Data Mining Techniques for Malware Detection | |
| Yiu, Jeffrey C.1 Fernandez, Jr., Proceso L.1 | |
| 关键词: Malware Detection; Data Mining; Dimension Reduction; Fea- ture Selection; Classification; | |
| DOI : 10.3860/pitj.v3i2.2571 | |
| 学科分类:计算机科学(综合) | |
| 来源: Philippine Society of Information Technology Educators | |
 PDF
|
|
【 摘 要 】
Many malware detectors utilize data mining techniques as primary tools for pattern recognition. As the number of new and evolving malware continues to rise, there is an increasing need for faster and more accurate detectors. However, for a given malware detector, detection speed and accuracy are usually inversely related. This study explores several con- figurations of classification combined with feature selection. An optimization function involving accuracy and processing time is used to evaluate each configuration. A real data set provided by Trend Micro Philippines is used for the study. Among 18 different configurations studied, it is shown that J4.8 without feature selection is best for cases where ac- curacy is extremely important. On the other hand, when time performance is more crucial, applying a Na ̈ıve Bayes classifier on a reduced data set (using Gain Ratio Attribute Evaluation to select the top 35 features only) gives the best results.
【 授权许可】
Unknown
【 预 览 】
| Files | Size | Format | View |
|---|---|---|---|
| RO201912020437783ZK.pdf | 16KB |  download |
878987797
028-85220240
