Malicious code detection method based on dendritic cell algorithm

• Main Authors: LI PENG, WANG RUCHUAN, XIAO FU, XU HE, XU JIA, JIANG LINGYUN, DAI QIUYU, SHA CHAO, HUANG HAIPING
• Format: Patent
• Language: Chinese; English
• Published: 26.03.2014
• Subjects: CALCULATING; COMPUTING; COUNTING; ELECTRIC DIGITAL DATA PROCESSING; PHYSICS

The invention provides a malicious code detection method based on a dendritic cell algorithm. The method includes that improvements are performed mainly on the dendritic cell algorithm, and the problem of generation and classification of signals when the dendritic cell algorithm is applied to perform malicious code monitoring is solved; numerical values of a mature context antigen value (MCAV) and an abnormal threshold value are compared, a process is judged to be illegal when the MCAV is larger than the abnormal threshold value, and the process is judged to be legal when the MCAV is smaller than the abnormal threshold value. By the method, detection efficiency of malicious codes is improved, false positive rate is lowered, and detection of unknown viruses is realized. Compared with other detection methods, the method has the advantages that a working principle of a biological immunity system is simulated, and the problem of malicious code detection can be solved better.