Abstrakti
This short empirical paper investigates a snapshot of about two million files from a continuously updated big data collection maintained by F-Secure for security intelligence purposes. By further augmenting the snapshot with open data covering about a half of a million files, the paper examines two questions: (a) what is the shape of a probability distribution characterizing the relative share of malware files to all files distributed from web-facing Internet domains, and (b) what is the distribution shaping the popularity of malware files? A bimodal distribution is proposed as an answer to the former question, while a graph theoretical definition for the popularity concept indicates a long-tailed, extreme value distribution. With these two questions - and the answers thereto, the paper contributes to the attempts to understand large-scale characteristics of malware at the grand population level - at the level of the whole Internet.
| Alkuperäiskieli | Englanti |
|---|---|
| Otsikko | Proceedings - 2016 European Intelligence and Security Informatics Conference, EISIC 2016 |
| Kustantaja | IEEE |
| Sivut | 144-147 |
| Sivumäärä | 4 |
| ISBN (elektroninen) | 9781509028566 |
| DOI - pysyväislinkit | |
| Tila | Julkaistu - 2 maalisk. 2017 |
| OKM-julkaisutyyppi | A4 Artikkeli konferenssijulkaisuussa |
| Tapahtuma | European Intelligence and Security Informatics Conference - Uppsala, Ruotsi Kesto: 17 elok. 2016 → 19 elok. 2016 Konferenssinumero: 7 |
Conference
| Conference | European Intelligence and Security Informatics Conference |
|---|---|
| Lyhennettä | EISIC |
| Maa/Alue | Ruotsi |
| Kaupunki | Uppsala |
| Ajanjakso | 17/08/2016 → 19/08/2016 |