Forum for Science, Industry and Business

Sponsored by:     3M 
Search our Site:

 

Detection of Malicious Non-Executable Files Using Syntactic Structure

19.02.2013
A major portion of threats against end-user systems arises from non-executable files, e.g., PDF documents or Flash animations. Such files may contain malicious executable content which is launched when a file is opened in a vulnerable viewer. Such attacks are hard to detect due to the high complexity of respective file formats. Conventional antivirus products often miss malicious content hidden in the rich syntactic structure of file formats.

A research group at the University of Tübingen developed a patent-pending technology: a highly performant static analysis tool for detection of malicious PDF documents. Instead of performing analysis of JavaScript or any other content for detection, the new developed method provides a reliable means for detection of malicious files by focusing precisely on structural artifacts arising from embedded malicious content. The research group could demonstrate its effectiveness on a dataset of about 500,000 real-world malicious and benign PDF files: the new method outperforms each of the 43 antiviruses at VirusTotal and other specialized detection methods. Additionally, the new method is almost completely immune to nearly worst-case attack scenarios.

Further Information: PDF

Eberhard Karls Universität Tübingen
Phone: +49 (7071) 29-72639

Contact
Dr. Rolf Hecker

info@technologieallianz.de | TechnologieAllianz e.V.
Further information:
http://www.technologieallianz.de/angebote.php?sort=sag&id=3038&lang=en
http://www.technologieallianz.de

More articles from Technology Offerings:

nachricht Synthesis of novel Myrtucommulone and Analogues
25.11.2013 | TechnologieAllianz e.V.

nachricht Innovative nozzle design with homogeneous flow profile usable as divergent long-range nozzle with high penetration depth
22.11.2013 | TechnologieAllianz e.V.

All articles from Technology Offerings >>>

The most recent press releases about innovation >>>

Anzeige

Anzeige

Event News

"Start-ups and spin-offs funding – Public and private policies", 14th October 2014

12.09.2014 | Event News

BALTIC 2014: Baltic Sea Geologists meet in Warnemünde

03.09.2014 | Event News

IT security in the digital society

27.08.2014 | Event News

 
Latest News

No sedative necessary: Scientists discover new “sleep node” in the brain

19.09.2014 | Life Sciences

Sensing Neuronal Activity With Light

19.09.2014 | Life Sciences

Miranda: An Icy Moon Deformed by Tidal Heating

19.09.2014 | Earth Sciences

VideoLinks
B2B-VideoLinks
More VideoLinks >>>