Training a multi-criteria decision system and application to the detection of PHP webshells

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdragepeer review

Samenvatting

In this paper we present an algorithm designed to train a multi-criteria decision system. This kind of system is very important and used a lot in different military fields and, particularly in cyber-defense. We developed this algorithm to be used with different multi-agent detection systems. The MASFAD system is a typical example [1]. It is a multi-agent system for Advanced Persistent Threat (APT) detection. In this paper we compare different optimization methods for learning Weighted Ordered Weighted Averaging (WOWA) coefficients in order to perform a binary classification. The WOWA function is an aggregation function that is a generalization of OrderedWeighted Averaging (OWA) and the Weighted mean. The WOWA operator combines both of their advantages The learning part is based on a Genetic Algorithm and uses a training dataset. We perform a complete parameter study and we determine the efficiency of our model by evaluating the performance during the classification of different PHP files as webshells or normal files. These PHP files were previously analyzed by a program developed at the Royal Military Academy. We obtain very accurate results and a good stability during the decision process. This system could be used in a lot of different fields.

Originele taal-2Engels
Titel2019 International Conference on Military Communications and Information Systems, ICMCIS 2019
UitgeverijInstitute of Electrical and Electronics Engineers Inc.
ISBN van elektronische versie9781538693834
DOI's
StatusGepubliceerd - mei 2019
Evenement2019 International Conference on Military Communications and Information Systems, ICMCIS 2019 - Budva, Montenegro
Duur: 14 mei 201915 mei 2019

Publicatie series

Naam2019 International Conference on Military Communications and Information Systems, ICMCIS 2019

Congres

Congres2019 International Conference on Military Communications and Information Systems, ICMCIS 2019
Land/RegioMontenegro
StadBudva
Periode14/05/1915/05/19

Vingerafdruk

Duik in de onderzoeksthema's van 'Training a multi-criteria decision system and application to the detection of PHP webshells'. Samen vormen ze een unieke vingerafdruk.

Citeer dit