Training a multi-criteria decision system and application to the detection of PHP webshells

Publikation: Beitrag in Buch/Bericht/KonferenzbandKonferenzbeitragBegutachtung

Abstract

In this paper we present an algorithm designed to train a multi-criteria decision system. This kind of system is very important and used a lot in different military fields and, particularly in cyber-defense. We developed this algorithm to be used with different multi-agent detection systems. The MASFAD system is a typical example [1]. It is a multi-agent system for Advanced Persistent Threat (APT) detection. In this paper we compare different optimization methods for learning Weighted Ordered Weighted Averaging (WOWA) coefficients in order to perform a binary classification. The WOWA function is an aggregation function that is a generalization of OrderedWeighted Averaging (OWA) and the Weighted mean. The WOWA operator combines both of their advantages The learning part is based on a Genetic Algorithm and uses a training dataset. We perform a complete parameter study and we determine the efficiency of our model by evaluating the performance during the classification of different PHP files as webshells or normal files. These PHP files were previously analyzed by a program developed at the Royal Military Academy. We obtain very accurate results and a good stability during the decision process. This system could be used in a lot of different fields.

OriginalspracheEnglisch
Titel2019 International Conference on Military Communications and Information Systems, ICMCIS 2019
Herausgeber (Verlag)Institute of Electrical and Electronics Engineers Inc.
ISBN (elektronisch)9781538693834
DOIs
PublikationsstatusVeröffentlicht - Mai 2019
Veranstaltung2019 International Conference on Military Communications and Information Systems, ICMCIS 2019 - Budva, Montenegro
Dauer: 14 Mai 201915 Mai 2019

Publikationsreihe

Name2019 International Conference on Military Communications and Information Systems, ICMCIS 2019

Konferenz

Konferenz2019 International Conference on Military Communications and Information Systems, ICMCIS 2019
Land/GebietMontenegro
OrtBudva
Zeitraum14/05/1915/05/19

Fingerprint

Untersuchen Sie die Forschungsthemen von „Training a multi-criteria decision system and application to the detection of PHP webshells“. Zusammen bilden sie einen einzigartigen Fingerprint.

Dieses zitieren