Forum for Science, Industry and Business

Sponsored by:     3M 
Search our Site:

 

Detection of Malicious Non-Executable Files Using Syntactic Structure

19.02.2013
A major portion of threats against end-user systems arises from non-executable files, e.g., PDF documents or Flash animations. Such files may contain malicious executable content which is launched when a file is opened in a vulnerable viewer. Such attacks are hard to detect due to the high complexity of respective file formats. Conventional antivirus products often miss malicious content hidden in the rich syntactic structure of file formats.

A research group at the University of Tübingen developed a patent-pending technology: a highly performant static analysis tool for detection of malicious PDF documents. Instead of performing analysis of JavaScript or any other content for detection, the new developed method provides a reliable means for detection of malicious files by focusing precisely on structural artifacts arising from embedded malicious content. The research group could demonstrate its effectiveness on a dataset of about 500,000 real-world malicious and benign PDF files: the new method outperforms each of the 43 antiviruses at VirusTotal and other specialized detection methods. Additionally, the new method is almost completely immune to nearly worst-case attack scenarios.

Further Information: PDF

Eberhard Karls Universität Tübingen
Phone: +49 (7071) 29-72639

Contact
Dr. Rolf Hecker

info@technologieallianz.de | TechnologieAllianz e.V.
Further information:
http://www.technologieallianz.de/angebote.php?sort=sag&id=3038&lang=en
http://www.technologieallianz.de

More articles from Technology Offerings:

nachricht Synthesis of novel Myrtucommulone and Analogues
25.11.2013 | TechnologieAllianz e.V.

nachricht Transmission signal separation in radar systems for OFDM and multicarrier radar
22.11.2013 | TechnologieAllianz e.V.

All articles from Technology Offerings >>>

The most recent press releases about innovation >>>

Anzeige

Anzeige

Event News

IT security in the digital society

27.08.2014 | Event News

Understanding the brain—neuroscientists meet in Göttingen

27.08.2014 | Event News

MEDICA EDUCATION CONFERENCE: Bessere Behandlung dank Biomarker

21.08.2014 | Event News

 
Latest News

Endangered Siamese Crocs Released in Wild

01.09.2014 | Ecology, The Environment and Conservation

Doing More with Less: New Technique Uses Fraction of Measurements to Efficiently Find Quantum Wave Functions

01.09.2014 | Physics and Astronomy

Simpler Process to Grow Germanium Nanowires Could Improve Lithium-Ion Batteries

01.09.2014 | Materials Sciences

VideoLinks
B2B-VideoLinks
More VideoLinks >>>