Supervisory control of malicious executables

V. V. Phoha; Xin Xu; A. Ray; S. Phoha

doi:10.1016/S1474-6670(17)36634-X

Supervisory control of malicious executables

V. V. Phoha, Xin Xu, A. Ray, S. Phoha

Research output: Contribution to journal › Conference article › peer-review

Abstract

This paper presents a systems-theoretic approach to profile, model, and control malicious executables in computer software. By treating the structural profile of malicious codes as a generator of formal languages, the language recognizer serves as a supervisory controller in the sense that the spread of malicious executables is arrested with the goal of making the virus ineffective. The theoretical foundation and the approach presented in this paper are applicable to a wide class of malicious executables. The controller can be designed as a separate program or as a background process to run on individual machines to monitor other processes. Simulation experiments on supervisory control of a file virus are presented as examples.

Original language	English (US)
Pages (from-to)	1065-1070
Number of pages	6
Journal	IFAC Proceedings Volumes (IFAC-PapersOnline)
Volume	36
Issue number	5
DOIs	https://doi.org/10.1016/S1474-6670(17)36634-X
State	Published - 2003
Event	5th IFAC Symposium on Fault Detection, Supervision and Safety of Technical Processes, Safeprocess 2003 - Washington, United States Duration: Jun 9 1997 → Jun 11 1997

All Science Journal Classification (ASJC) codes

Control and Systems Engineering

Access to Document

10.1016/S1474-6670(17)36634-X

Cite this

@article{65a1282cf5ce4b0cbb5c7072f8249836,

title = "Supervisory control of malicious executables",

abstract = "This paper presents a systems-theoretic approach to profile, model, and control malicious executables in computer software. By treating the structural profile of malicious codes as a generator of formal languages, the language recognizer serves as a supervisory controller in the sense that the spread of malicious executables is arrested with the goal of making the virus ineffective. The theoretical foundation and the approach presented in this paper are applicable to a wide class of malicious executables. The controller can be designed as a separate program or as a background process to run on individual machines to monitor other processes. Simulation experiments on supervisory control of a file virus are presented as examples.",

author = "Phoha, {V. V.} and Xin Xu and A. Ray and S. Phoha",

note = "Funding Information: This work has been supported in part by the Army Research Office under Grant No. DAADI9-01-1-0646. Publisher Copyright: {\textcopyright} 2003 International Federation of Automatic Control.; 5th IFAC Symposium on Fault Detection, Supervision and Safety of Technical Processes, Safeprocess 2003 ; Conference date: 09-06-1997 Through 11-06-1997",

year = "2003",

doi = "10.1016/S1474-6670(17)36634-X",

language = "English (US)",

volume = "36",

pages = "1065--1070",

journal = "IFAC Proceedings Volumes (IFAC-PapersOnline)",

issn = "1474-6670",

publisher = "IFAC Secretariat",

number = "5",

}

TY - JOUR

T1 - Supervisory control of malicious executables

AU - Phoha, V. V.

AU - Xu, Xin

AU - Ray, A.

AU - Phoha, S.

PY - 2003

Y1 - 2003

N2 - This paper presents a systems-theoretic approach to profile, model, and control malicious executables in computer software. By treating the structural profile of malicious codes as a generator of formal languages, the language recognizer serves as a supervisory controller in the sense that the spread of malicious executables is arrested with the goal of making the virus ineffective. The theoretical foundation and the approach presented in this paper are applicable to a wide class of malicious executables. The controller can be designed as a separate program or as a background process to run on individual machines to monitor other processes. Simulation experiments on supervisory control of a file virus are presented as examples.

AB - This paper presents a systems-theoretic approach to profile, model, and control malicious executables in computer software. By treating the structural profile of malicious codes as a generator of formal languages, the language recognizer serves as a supervisory controller in the sense that the spread of malicious executables is arrested with the goal of making the virus ineffective. The theoretical foundation and the approach presented in this paper are applicable to a wide class of malicious executables. The controller can be designed as a separate program or as a background process to run on individual machines to monitor other processes. Simulation experiments on supervisory control of a file virus are presented as examples.

UR - http://www.scopus.com/inward/record.url?scp=85064459630&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85064459630&partnerID=8YFLogxK

U2 - 10.1016/S1474-6670(17)36634-X

DO - 10.1016/S1474-6670(17)36634-X

M3 - Conference article

AN - SCOPUS:85064459630

SN - 1474-6670

VL - 36

SP - 1065

EP - 1070

JO - IFAC Proceedings Volumes (IFAC-PapersOnline)

JF - IFAC Proceedings Volumes (IFAC-PapersOnline)

IS - 5

T2 - 5th IFAC Symposium on Fault Detection, Supervision and Safety of Technical Processes, Safeprocess 2003

Y2 - 9 June 1997 through 11 June 1997

ER -

Supervisory control of malicious executables

Abstract

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this