Classification of malware using multinomial linked latent modular double q learning
نویسندگان
چکیده
In recent times, malware has progressed by utilizing distinct advanced machine learning techniques for detection. However, the model becomes complicated and singular value decomposition depth-based detectors failed to detect significantly with minimum time overhead. This paper proposes a multinomial linked latent dirichlet modular double q (MLLD-MDQL) efficiently based on network behavior patterns. First, extraction (ML-LDNBE) is applied input anomaly detection that extracts pattern. The extracted which are grouped perform path protocol analyzing repeated behaviors. Finally, classification behaviors significant effectiveness of proposed MLLD-M DQL method compared existing models. results obtained show combined (ML) determined also reduced false positive rate (FPR). showed 42% better when 62% FPR.
منابع مشابه
Architectural Style Classification Using Multinomial Latent Logistic Regression
Architectural style classification differs from standard classification tasks due to the rich inter-class relationships between different styles, such as re-interpretation, revival, and territoriality. In this paper, we adopt Deformable Part-based Models (DPM) to capture the morphological characteristics of basic architectural components and propose Multinomial Latent Logistic Regression (MLLR)...
متن کاملMalware Detection using Classification of Variable-Length Sequences
In this paper, a novel method based on the graph is proposed to classify the sequence of variable length as feature extraction. The proposed method overcomes the problems of the traditional graph with variable length of data, without fixing length of sequences, by determining the most frequent instructions and insertion the rest of instructions on the set of “other”, save speed and memory. Acco...
متن کاملDouble Q-learning
In some stochastic environments the well-known reinforcement learning algorithm Q-learning performs very poorly. This poor performance is caused by large overestimations of action values. These overestimations result from a positive bias that is introduced because Q-learning uses the maximum action value as an approximation for the maximum expected action value. We introduce an alternative way ...
متن کاملWeighted Double Q-learning
Q-learning is a popular reinforcement learning algorithm, but it can perform poorly in stochastic environments due to overestimating action values. Overestimation is due to the use of a single estimator that uses the maximum action value as an approximation for the maximum expected action value. To avoid overestimation in Qlearning, the double Q-learning algorithm was recently proposed, which u...
متن کاملLearning and Classification of Malware Behavior
Malicious software in form of Internet worms, computer viruses, and Trojan horses poses a major threat to the security of networked systems. The diversity and amount of its variants severely undermine the e ectiveness of classical signature-based detection. Yet variants of malware families share typical behavioral patterns reflecting its origin and purpose. We aim to exploit these shared patter...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Indonesian Journal of Electrical Engineering and Computer Science
سال: 2022
ISSN: ['2502-4752', '2502-4760']
DOI: https://doi.org/10.11591/ijeecs.v28.i1.pp577-586