Similarity Computation for Executable Objects Homology Detection Based on Structural Signature

doi:10.13190/jbupt.201203.56.357

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2012, Vol. 35 ›› Issue (3): 56-60.doi: 10.13190/jbupt.201203.56.357

• Papers • Previous Articles Next Articles

Similarity Computation for Executable Objects Homology Detection Based on Structural Signature

LIU Chun-hong^1,2,GUO Tao³,CUI Bao-jiang²,WANG Jian-xin⁴

1College of Computer and Information Technology, Henan Normal University, Henan Xinxiang 453007, China;2School of Computer Science and Technology, Beijing University of Posts and Telecommunications, Beijing 100876， China;3China Information Technology Security Evaluation Center, Beijing 100085, China; 4School of Information of Science and Technology, Beijing Forestry University, Beijing 100083, China

Received:2011-08-14 Revised:2011-10-18 Online:2012-06-28 Published:2012-02-29

Abstract

Abstract:

A method of similarity computation for executable objects homology detection based on structural signature was proposed. At first step, considering the characteristic of clone code, a signature of basic code block was designed. On the basis of the hierarchical structure of filefunctionbasic code block, similarity measurement of basic code block was built based on its basic properties and structural information. At second step, to evaluate the homology between original and object files, the similarity was calculated through constructing function weight by means of function structural information. Aiming at the most common clone patterns, some experiments were conducted between the proposed method, the method without considering weight and some mainstream similarity detection tools. Comparative results demonstrate that the proposed method can measure the similarity of two executable objects more accurately than other methods.

Key words: executable objects, homologous detection, structural signature, weight

CLC Number:

TP 311

[1]	SUN Baosheng, XIE Dongliang. Lightweight Chinese Lipreading Model and Dataset Construction [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(4): 58-63.
[2]	PENG Yi, WU Tong, YANG Qingqing. Alternate Optimization Beamforming Method for Downlink RIS-NOMA System [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(4): 64-69.
[3]	XIE Lixia, LIU Siyu, YANG Hongyu, ZHANG Liang. A Software Defect Assessment Method with Classification Cost [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(4): 116-122.
[4]	ZHANG Xiaoqian, TAN Zhen, WANG Xiao, LIANG Qin, WAN Liming. Image Feature Extraction Algorithm Based on Orthogonal Projection Learning [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(5): 85-90,128.
[5]	YANG Hongyu, YUAN Haihang, ZHANG Liang. A Risk Assessment Method of Network Host Node with Host Importance [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(2): 16-21.
[6]	WANG Rui-nan, WU Mu-qing, CHEN Tie-ying, LI Zhi-gang, SUN Jian. Edge Detection of Infrared Image Based on Morphology [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(1): 66-71.
[7]	WEI Juan, CAO Kai-jun, NING Fang-li. DOA Estimation Algorithm for Sparse Representation Under Non-Stationary Noise [J]. Journal of Beijing University of Posts and Telecommunications, 2020, 43(1): 116-121.
[8]	YU Xiu-wu, YU Hao, LIU Yong, XIAO Ren-rong, LI Ying. APIT Location Algorithm Based on Weighted Hybrid Filtering and Center of Gravity Method [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(4): 32-37,75.
[9]	DING Qing-feng, DING Xu, LIN Zhi-ming. A Low Complexity Detection Algorithm Based on the Weight Factors for Spatial Modulation System [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(2): 31-35.
[10]	WEI Min, TANG Wen-jie, TENG Ying-lei, CHEN Guang-quan, SONG Mei. A Hybrid Precoding Algorithm Based on Weighted Minimum Mean Square Error in Massive MIMO Systems [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(4): 63-68.
[11]	LI Dong-hai, YANG Xiao-jun, YANG Yun, FAN Zhong-lei. The Method of High Level Synthesis for Polynomial Datapaths [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2017, 40(1): 130-136.
[12]	RUI Lan-lan, ZHANG Jie, GUO Shao-yong, XIONG Ao. Sample Weighting Based Gene Feature Selection Model [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(s1): 72-75.
[13]	TIAN Li-qin, LI Jun-jian, WU Ze-nan. Trust Evaluation of Web User Behavior with Weight Optimal Balance [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(6): 99-103,130.
[14]	LU You-jun, XU Dao-yun, ZHOU Jin-cheng. Vertex Degree Distribution in Growth Models with Nonlinear Preferential Attachment Rule [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(5): 116-123.
[15]	ZHOU Jing-xian, ZHOU Ya-jian, GU Zhao-jun. Constant-Time Lightweight RFID Mutual Authentication Protocol [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(3): 60-63,90.

Similarity Computation for Executable Objects Homology Detection Based on Structural Signature

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments