TY - GEN
T1 - Malware behavior detection method based on reinforcement learning
AU - Cui, Jiajia
AU - Leng, Biao
AU - Wang, Xianggen
AU - Wang, Fuxi
AU - Yang, Jun
N1 - Publisher Copyright:
© 2023 SPIE.
PY - 2023
Y1 - 2023
N2 - Malware in the network environment is a serious threat to the security of industrial control systems. With the gradual increase of malware variants, it brings great challenges to the detection and security protection of industrial control system malware. The existing detection methods have limitations such as low intelligence in adaptive detection and recognition. In response to this problem, this paper designs a detection application method framework by combining the use of reinforcement learning, an advanced machine learning algorithm, around the malware objects that threaten the network security of industrial control systems. In the implementation process, according to the actual needs of malware behavior detection, fully combined with intelligent features such as sequential decision-making and dynamic feedback learning of reinforcement learning, the key application modules such as feature extraction network, policy network and classification network are discussed and designed in detail. The application experiments based on the actual malware test data set verify the effectiveness of the method in this paper, which can provide an intelligent decision-making aid for general malware behavior detection.
AB - Malware in the network environment is a serious threat to the security of industrial control systems. With the gradual increase of malware variants, it brings great challenges to the detection and security protection of industrial control system malware. The existing detection methods have limitations such as low intelligence in adaptive detection and recognition. In response to this problem, this paper designs a detection application method framework by combining the use of reinforcement learning, an advanced machine learning algorithm, around the malware objects that threaten the network security of industrial control systems. In the implementation process, according to the actual needs of malware behavior detection, fully combined with intelligent features such as sequential decision-making and dynamic feedback learning of reinforcement learning, the key application modules such as feature extraction network, policy network and classification network are discussed and designed in detail. The application experiments based on the actual malware test data set verify the effectiveness of the method in this paper, which can provide an intelligent decision-making aid for general malware behavior detection.
KW - Malware detection
KW - feature extraction
KW - industrial control software,
KW - reinforcement learning
UR - https://www.scopus.com/pages/publications/85159285654
U2 - 10.1117/12.2671736
DO - 10.1117/12.2671736
M3 - 会议稿件
AN - SCOPUS:85159285654
T3 - Proceedings of SPIE - The International Society for Optical Engineering
BT - International Conference on Computer Application and Information Security, ICCAIS 2022
A2 - Varadarajan, Vijayakumar
A2 - Lin, Jerry Chun-Wei
A2 - Lorenz, Pascal
PB - SPIE
T2 - 2022 International Conference on Computer Application and Information Security, ICCAIS 2022
Y2 - 23 December 2022 through 24 December 2022
ER -