The problem of explaining the disparate performance of hyperresolution and paramodulation
Journal of Automated Reasoning
The problems of self-analytically choosing the weights
Journal of Automated Reasoning
The problem of choosing the type of subsumption to use
Journal of Automated Reasoning
Journal of Automated Reasoning
Parallel analysis of polymorphic viral code using automated deduction system
SNPD '07 Proceedings of the Eighth ACIS International Conference on Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing - Volume 02
Faster parameter detection of polymorphic viral code using hot list strategy
ICONIP'08 Proceedings of the 15th international conference on Advances in neuro-information processing - Volume Part I
Reliable identification of bounded-length viruses is NP-complete
IEEE Transactions on Information Theory
Log analysis of exploitation in cloud computing environment using automated reasoning
ICONIP'10 Proceedings of the 17th international conference on Neural information processing: models and applications - Volume Part II
Faster log analysis and integration of security incidents using knuth-bendix completion
ICONIP'11 Proceedings of the 18th international conference on Neural Information Processing - Volume Part II
Hi-index | 0.01 |
Malware (Malicious Software) of Windows OS has become more sophisticated. To take some countermeasures for recent infection, more intelligent and automated system log analysis is necessary. In this paper we propose an automated log analysis of infected Windows OS using mechanized reasoning. We apply automated deduction system for gathering events of malware and extract the behavior of infection over large scale system logs. In experiment, we cope with four kinds of resolution strategies to detect the malicious behavior. It is shown that automation of analyzing system logs is possible for detecting actual malicious software.