loading
Papers

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Davide Maiorca ; Davide Ariu ; Igino Corona and Giorgio Giacinto

Affiliation: University of Cagliari, Italy

ISBN: 978-989-758-081-9

Keyword(s): PDF, Evasion, Adversarial Machine Learning, Malware, Javascript.

Abstract: During the past years, malicious PDF files have become a serious threat for the security of modern computer systems. They are characterized by a complex structure and their variety is considerably high. Several solutions have been academically developed to mitigate such attacks. However, they leveraged on information that were extracted from either only the structure or the content of the PDF file. This creates problems when trying to detect non-Javascript or targeted attacks. In this paper, we present a novel machine learning system for the automatic detection of malicious PDF documents. It extracts information from both the structure and the content of the PDF file, and it features an advanced parsing mechanism. In this way, it is possible to detect a wide variety of attacks, including non-Javascript and parsing-based ones. Moreover, with a careful choice of the learning algorithm, our approach provides a significantly higher accuracy compared to other static analysis techniques, es pecially in the presence of adversarial malware manipulation. (More)

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 18.210.28.227

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Maiorca, D.; Ariu, D.; Corona, I. and Giacinto, G. (2015). A Structural and Content-based Approach for a Precise and Robust Detection of Malicious PDF Files.In Proceedings of the 1st International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-081-9, pages 27-36. DOI: 10.5220/0005264400270036

@conference{icissp15,
author={Davide Maiorca. and Davide Ariu. and Igino Corona. and Giorgio Giacinto.},
title={A Structural and Content-based Approach for a Precise and Robust Detection of Malicious PDF Files},
booktitle={Proceedings of the 1st International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2015},
pages={27-36},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005264400270036},
isbn={978-989-758-081-9},
}

TY - CONF

JO - Proceedings of the 1st International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - A Structural and Content-based Approach for a Precise and Robust Detection of Malicious PDF Files
SN - 978-989-758-081-9
AU - Maiorca, D.
AU - Ariu, D.
AU - Corona, I.
AU - Giacinto, G.
PY - 2015
SP - 27
EP - 36
DO - 10.5220/0005264400270036

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.