Forum for Science, Industry and Business

Sponsored by:     3M 
Search our Site:

 

Detection of Malicious Non-Executable Files Using Syntactic Structure

19.02.2013
A major portion of threats against end-user systems arises from non-executable files, e.g., PDF documents or Flash animations. Such files may contain malicious executable content which is launched when a file is opened in a vulnerable viewer. Such attacks are hard to detect due to the high complexity of respective file formats. Conventional antivirus products often miss malicious content hidden in the rich syntactic structure of file formats.

A research group at the University of Tübingen developed a patent-pending technology: a highly performant static analysis tool for detection of malicious PDF documents. Instead of performing analysis of JavaScript or any other content for detection, the new developed method provides a reliable means for detection of malicious files by focusing precisely on structural artifacts arising from embedded malicious content. The research group could demonstrate its effectiveness on a dataset of about 500,000 real-world malicious and benign PDF files: the new method outperforms each of the 43 antiviruses at VirusTotal and other specialized detection methods. Additionally, the new method is almost completely immune to nearly worst-case attack scenarios.

Further Information: PDF

Eberhard Karls Universität Tübingen
Phone: +49 (7071) 29-72639

Contact
Dr. Rolf Hecker

info@technologieallianz.de | TechnologieAllianz e.V.
Further information:
http://www.technologieallianz.de/angebote.php?sort=sag&id=3038&lang=en
http://www.technologieallianz.de

More articles from Technology Offerings:

nachricht Synthesis of novel Myrtucommulone and Analogues
25.11.2013 | TechnologieAllianz e.V.

nachricht Innovative nozzle design with homogeneous flow profile usable as divergent long-range nozzle with high penetration depth
22.11.2013 | TechnologieAllianz e.V.

All articles from Technology Offerings >>>

The most recent press releases about innovation >>>

Anzeige

Anzeige

Event News

Siemens at the 2014 UIC ERTMS World Conference in Istanbul

01.04.2014 | Event News

AERA Meeting: German and US-American educational researchers in dialogue

28.03.2014 | Event News

WHS Regional Meeting: International experts address health challenges in Latin America

24.03.2014 | Event News

 
Latest News

A cross-section of the Universe

18.04.2014 | Physics and Astronomy

More, bigger wildfires burning western U.S., study shows

18.04.2014 | Studies and Analyses

High disease load reduces mortality of children

18.04.2014 | Social Sciences

VideoLinks
B2B-VideoLinks
More VideoLinks >>>