A Cloud-based Malware Detection Framework

Authors

  • Eman Ahmed Ain Shams University
  • Amin A. Sorrour Misr University for Science and Technology
  • Mohamed A. Sobh Ain Shams University
  • Ayman M. Bahaa-Eldin Ain Shams University https://orcid.org/0000-0002-6305-3965

DOI:

https://doi.org/10.3991/ijim.v11i2.6577

Keywords:

Cloud computing, Security issues, Malware, Static Binary Search, BMH, Hadoop

Abstract


Malwares are increasing rapidly. The nature of distribution and effects of malwares attacking several applications requires a real-time response. Therefore, a high performance detection platform is required. In this paper, Hadoop is utilized to perform static binary search and detection for malwares and viruses in portable executable files deployed mainly on the cloud. The paper presents an approach used to map the portable executable files to Hadoop compatible files. The Boyer–Moore-Horspool Search algorithm is modified to benefit from the distribution of Hadoop. The performance of the proposed model is evaluated using a standard virus database and the system is found to outperform similar platforms.

Author Biography

Ayman M. Bahaa-Eldin, Ain Shams University

Professor of Computer Networks and Security

Downloads

Published

2017-04-11

How to Cite

Ahmed, E., Sorrour, A. A., Sobh, M. A., & Bahaa-Eldin, A. M. (2017). A Cloud-based Malware Detection Framework. International Journal of Interactive Mobile Technologies (iJIM), 11(2), pp. 113–127. https://doi.org/10.3991/ijim.v11i2.6577

Issue

Section

Papers