首页> 外国专利> METHOD AND APPARATUS TO IDENTIFY HARDWARE PERFORMANCE COUNTER EVENTS FOR DETECTING AND CLASSIFYING MALWARE OR WORKLOAD USING ARTIFICIAL INTELLIGENCE

METHOD AND APPARATUS TO IDENTIFY HARDWARE PERFORMANCE COUNTER EVENTS FOR DETECTING AND CLASSIFYING MALWARE OR WORKLOAD USING ARTIFICIAL INTELLIGENCE

机译：用于识别硬件性能计数器事件的方法和设备，用于使用人工智能检测和分类恶意软件或工作量

页面导航

摘要
著录项
相似文献

摘要

A method comprises generating a first set of hardware performance counter (HPC) events that is ranked based on an ability of an individual HPC event to profile a malware class, generating a second set of HPC event combinations that is ranked based on an ability of a set of at least two joint HPC events to profile a malware class, generating a third set of extended HPC event combinations, profiling one or more malware events and one or more benign applications to obtain a detection accuracy parameter for each malware event, applying a machine learning model to rank the third set of HPC event combinations based on malware detection accuracy, and applying a genetic algorithm to the third set of HPC event combinations to identify a subset of the third set of extended combinations of HPC events to be used for malware detection and classification.

机译：一种方法包括生成基于单独HPC事件对简型恶意软件类别的能力进行排序的第一组硬件性能计数器（HPC）事件，生成恶意软件类，生成基于a的能力排序的第二组HPC事件组合。设置至少两个关节HPC事件来配置恶意软件类，生成第三组扩展HPC事件组合，分析一个或多个恶意软件事件和一个或多个良性应用程序，以获取每个恶意软件事件的检测精度参数，应用机器学习模型基于恶意软件检测准确性对第三组HPC事件组合进行排序，并将遗传算法应用于第三组HPC事件组合，以识别用于用于恶意软件检测的HPC事件的第三组扩展组合的子集和分类。

著录项

公开/公告号US2021110038A1

专利类型
公开/公告日2021-04-15

原文格式PDF
申请/专利权人 INTEL CORPORATION;
展开▼

申请/专利号US202017132248
发明设计人 DEEPAK KUMAR MISHRA;PRAJESH AMBILI RAJENDRAN;TAJ UN NISHA N;RAHULDEVA GHOSH;PAUL CARLSON;ZHENG ZHANG;
展开▼

申请日2020-12-23
分类号G06F21/56;G06N20;
国家 US
入库时间 2022-08-24 18:14:09

相似文献

专利
外文文献
中文文献