{"id":175746,"updated":"2025-01-20T06:10:44.523656+00:00","links":{},"created":"2025-01-19T00:45:29.062854+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00175746","sets":["6164:6165:6462:8948"]},"path":["8948"],"owner":"11","recid":"175746","title":["API呼び出しとシステム負荷を用いたマルウェアの特徴抽出に関する一検討"],"pubdate":{"attribute_name":"公開日","attribute_value":"2016-10-04"},"_buckets":{"deposit":"3224f7a7-52ee-4491-847c-045405e34872"},"_deposit":{"id":"175746","pid":{"type":"depid","value":"175746","revision_id":0},"owners":[11],"status":"published","created_by":11},"item_title":"API呼び出しとシステム負荷を用いたマルウェアの特徴抽出に関する一検討","author_link":["367521","367523","367527","367522","367525","367530","367526","367524","367529","367528"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"API呼び出しとシステム負荷を用いたマルウェアの特徴抽出に関する一検討"},{"subitem_title":"A Study of Characteristic of Malware Based on API Call Sequence and System Load Status Analysis","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"MWS，動的解析，API，システム負荷","subitem_subject_scheme":"Other"}]},"item_type_id":"18","publish_date":"2016-10-04","item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_18_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"東京情報大学 総合情報学部"},{"subitem_text_value":"東京情報大学 総合情報学部"},{"subitem_text_value":"東京情報大学 総合情報学部"},{"subitem_text_value":"東京情報大学 総合情報学部"},{"subitem_text_value":"東京情報大学 総合情報学部"}]},"item_18_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Department of Information Sciences, Tokyo University of Information Sciences","subitem_text_language":"en"},{"subitem_text_value":"Department of Information Sciences, Tokyo University of Information Sciences","subitem_text_language":"en"},{"subitem_text_value":"Department of Information Sciences, Tokyo University of Information Sciences","subitem_text_language":"en"},{"subitem_text_value":"Department of Information Sciences, Tokyo University of Information Sciences","subitem_text_language":"en"},{"subitem_text_value":"Department of Information Sciences, Tokyo University of Information Sciences","subitem_text_language":"en"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/175746/files/IPSJCSS2016046.pdf","label":"IPSJCSS2016046.pdf"},"date":[{"dateType":"Available","dateValue":"2018-10-04"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJCSS2016046.pdf","filesize":[{"value":"389.8 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"30"},{"tax":["include_tax"],"price":"0","billingrole":"46"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"8d05a730-55d4-4a7c-8873-59121ecddaec","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2016 by the Information Processing Society of Japan"}]},"item_18_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"佐藤, 順子"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"三須, 剛史"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"花田, 真樹"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"鈴木, 英男"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"布広, 永示"}],"nameIdentifiers":[{}]}]},"item_18_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Junko, Sato","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Takeshi, Misu","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Masaki, Hanada","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Hideo, Suzuki","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Eiji, Nunohiro","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_18_relation_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_relation_type_id":{"subitem_relation_type_select":"NCID","subitem_relation_type_id_text":"ISSN　1882-0840"}}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_5794","resourcetype":"conference paper"}]},"item_18_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"近年のマルウェアの急激な増加に伴い，短期間でマルウェアの挙動が解析可能な動的解析が注目され，動的解析を用いたマルウェア検知手法が数多く提案されている．本研究では，API 呼び出しとその呼び出しに伴うシステム負荷に着目し，マルウェア検知の判定に有用なマルウェアの特徴抽出を行う．これまでに，API 呼び出しの遷移や API 呼び出し時の引数の変化など，API に着目した動的解析を用いたマルウェア検知手法が提案されている．本稿では，従来より提案されている API 呼び出しの遷移に加えて，API 呼び出しの時間間隔と API 呼び出しに伴うシステム負荷に着目し，マルウェア検知の判定に有用なマルウェアの特徴に関して分析した結果を報告する．","subitem_description_type":"Other"}]},"item_18_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"With rapid increase of malware, dynamic analysis has been focused because dynamic behavior of malware can be analyzed in a short time.In this research, we extract characteristic of malware based on API call sequence and system load status analysis for malware detection.In the past research, methods of malware detection based on API call (e.g., API call pattern and dynamic change of API arguments) were proposed.In this paper, in addition to API call pattern used in the past research, we focus on system load status on API call and time period of API call, and show the results of characteristic of malware using the system load status on API call and time period of API call.","subitem_description_type":"Other"}]},"item_18_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"309","bibliographic_titles":[{"bibliographic_title":"コンピュータセキュリティシンポジウム2016論文集"}],"bibliographicPageStart":"305","bibliographicIssueDates":{"bibliographicIssueDate":"2016-10-04","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"2","bibliographicVolumeNumber":"2016"}]},"relation_version_is_last":true,"weko_creator_id":"11"}}