@inproceedings{a38fff49eda745a1a75f36dc63d54c4e,
title = "Applying machine learning techniques for detection of malicious code in network traffic",
abstract = "The Early Detection, Alert and Response (eDare) system is aimed at purifying Web traffic propagating via the premises of Network Service Providers (NSP) from malicious code. To achieve this goal, the system employs powerful network traffic scanners capable of cleaning traffic from known malicious code. The remaining traffic is monitored and Machine Learning (ML) algorithms are invoked in an attempt to pinpoint unknown malicious code exhibiting suspicious morphological patterns. Decision trees, Neural Networks and Bayesian Networks are used for static code analysis in order to determine whether a suspicious executable file actually inhabits malicious code. These algorithms are being evaluated and preliminary results are encouraging.",
keywords = "Feature selection, Machine learning, Malicious code, Network Service Provider (NSP)",
author = "Yuval Elovici and Asaf Shabtai and Robert Moskovitch and Gil Tahn and Chanan Glezer",
year = "2007",
month = jan,
day = "1",
doi = "10.1007/978-3-540-74565-5_5",
language = "English",
isbn = "9783540745648",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "44--50",
booktitle = "KI 2007",
address = "Germany",
note = "30th Annual German Conference on Artificial Intelligence, KI 2007 ; Conference date: 10-09-2007 Through 13-09-2007",
}