All

What are you looking for?

All
Projects
Results
Organizations

Quick search

  • Projects supported by TA ČR
  • Excellent projects
  • Projects with the highest public support
  • Current projects

Smart search

  • That is how I find a specific +word
  • That is how I leave the -word out of the results
  • “That is how I can find the whole phrase”
EN
ČeštinaEnglish

A Multi-Tier Streaming Analytics Model of 0-Day Ransomware Detection Using Machine Learning

The result's identifiers

  • Result code in IS VaVaI

    <a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F62690094%3A18450%2F20%3A50017062" target="_blank" >RIV/62690094:18450/20:50017062 - isvavai.cz</a>

  • Result on the web

    <a href="https://www.mdpi.com/2076-3417/10/9/3210/htm" target="_blank" >https://www.mdpi.com/2076-3417/10/9/3210/htm</a>

  • DOI - Digital Object Identifier

    <a href="http://dx.doi.org/10.3390/app10093210" target="_blank" >10.3390/app10093210</a>

Alternative languages

  • Result language

    angličtina

  • Original language name

    A Multi-Tier Streaming Analytics Model of 0-Day Ransomware Detection Using Machine Learning

  • Original language description

    Desktop and portable platform-based information systems become the most tempting target of crypto and locker ransomware attacks during the last decades. Hence, researchers have developed anti-ransomware tools to assist the Windows platform at thwarting ransomware attacks, protecting the information, preserving the users&apos; privacy, and securing the inter-related information systems through the Internet. Furthermore, they utilized machine learning to devote useful anti-ransomware tools that detect sophisticated versions. However, such anti-ransomware tools remain sub-optimal in efficacy, partial to analyzing ransomware traits, inactive to learn significant and imbalanced data streams, limited to attributing the versions&apos; ancestor families, and indecisive about fusing the multi-descent versions. In this paper, we propose a hybrid machine learner model, which is a multi-tiered streaming analytics model that classifies various ransomware versions of 14 families by learning 24 static and dynamic traits. The proposed model classifies ransomware versions to their ancestor families numerally and fuses those of multi-descent families statistically. Thus, it classifies ransomware versions among 40K corpora of ransomware, malware, and good-ware versions through both semi-realistic and realistic environments. The supremacy of this ransomware streaming analytics model among competitive anti-ransomware technologies is proven experimentally and justified critically with the average of 97% classification accuracy, 2.4% mistake rate, and 0.34% miss rate under comparative and realistic test.

  • Czech name

  • Czech description

Classification

  • Type

    J<sub>imp</sub> - Article in a specialist periodical, which is included in the Web of Science database

  • CEP classification

  • OECD FORD branch

    20401 - Chemical engineering (plants, products)

Result continuities

  • Project

  • Continuities

    S - Specificky vyzkum na vysokych skolach

Others

  • Publication year

    2020

  • Confidentiality

    S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Data specific for result type

  • Name of the periodical

    APPLIED SCIENCES-BASEL

  • ISSN

    2076-3417

  • e-ISSN

  • Volume of the periodical

    10

  • Issue of the periodical within the volume

    9

  • Country of publishing house

    CH - SWITZERLAND

  • Number of pages

    23

  • Pages from-to

    "Article Number: 3210"

  • UT code for WoS article

    000535541900223

  • EID of the result in the Scopus database

    2-s2.0-85085074436

Similar results(10)

Multi-Classification of Imbalance Worm Ransomware in the IoMT SystemRansomware File Detection Using Hashes and Machine LearningGeneration of Adversarial Malware and Benign Examples Using Reinforcement Learning