Windows平台恶意软件智能检测综述

近年来,恶意软件给信息技术的发展带来了很多负面的影响.为了解决这一问题,如何有效检测恶意软件则一直备受关注.随着人工智能的迅速发展,机器学习与深度学习技术逐渐被引入到恶意软件的检测中,这类技术称之为恶意软件智能检测技术.相比于传统的检测方法,由于人工智能技术的应用,智能检测技术不需要人工制定检测规则.此外,具有更强的泛化能力,能够更好地检测先前未见过的恶意软件.恶意软件智能检测已经成为当前检测领域的研究热点.主要介绍了当前的恶意软件智能检测相关工作,包含了智能检测所需的主要环节.从智能检测中常用的特征、如何进行特征处理、智能检测中常用的分类器、当前恶意软件智能检测所面临的主要问题4个方面对智能检测相关工作进行了系统地阐述与分类.最后,总结了先前智能检测相关工作,阐明了未来潜在的研究方向,旨在能够助力恶意软件智能检测的发展.

A Survey of Intelligent Malware Detection on Windows Platform

In recent years,malware has brought many negative effects to the development of information technology.In order to solve this problem,how to effectively detect malware has always been a concern.With the rapid development of artificial intelligence,machine learning and deep learning technologies are gradually introduced into the field of malware detection.This type of technology is called intelligent malware detection technology.Compared with traditional detection methods,intelligent detection technology does not need to manually formulate detection rules due to the application of artificial intelligence technology.Besides,intelligent detection technology has stronger generalization capabilities,and can better detect previously unseen malware.Intelligent malware detection has become a research hotspot in the field of detection.This paper mainly introduces current work related to intelligent malware detection,which includes the main parts required for intelligent detection processes.Specifically,we have systematically explained and classified related work for intelligent malware detection in this paper,which includes the features commonly used in intelligent detection,how to perform feature processing,the commonly used classifiers in intelligent detection,and the main problems faced by current malware intelligent detection.Finally,we summarize the full paper and clarify the potential future research directions,aiming to contribute to the development of intelligent malware detection.