Invesitigation of Malware and Forensic Tools on Internet

Malware is an application that is harmful to your forensic information. Basically, malware analyses is the process of analysing the behaviours of malicious code and then create signatures to detect and defend against it.Malware, such as Trojan horse, Worms and Spyware severely threatens the forensic security. This research observed that although malware and its variants may vary a lot from content signatures, they share some behaviour features at a higher level which are more precise in revealing the real intent of malware. This paper investigates the various techniques of malware behaviour extraction and analysis. In addition, we discuss the implications of malware analysis tools for malware detection based on various techniques

Knowledge-based approach to risk analysis in the customs domain

The aim of this PhD project is to develop a fuzzy knowledge-based approach in support of risk analysis in the Customs domain. Focusing upon risk management and risk analysis in the Customs domain, this thesis explores the relationship of risk with uncertainty, fuzziness, vagueness, and imprecise knowledge and it analyses state of the art detection techniques for fraud and risk. Special focus is given to fuzzy logic, ontological engineering, and semantic modelling considering aspects such as the importance of human knowledge and semantic knowledge in the context of risk analysis for the Customs domain. An approach is presented combining the fuzzy modelling and reasoning with semantic modelling and ontologies. Fuzzy modelling and reasoning is explored in the context of risk analysis and detection in order to examine approximate human reasoning based on human knowledge. Ontologies and semantic modelling are explored as an approach to represent domain knowledge and concepts. The purpose is to enable easier communication and understanding as well as interoperability. Risk management is broader, multi-dimensional process involving a number of task, activities, and practises. The presented approach is focused on examining the analysis and detection of the risk, based on the outputs of the risk management process with the use of ontologies and fuzzy rule-based reasoning. An ontological architecture is developed in the context of the presented approach. It is considered that such architecture is possible to enable modularity, maintainability, re-usability, and extensibility and can also be extended or integrated with other ontologies. In addition, examples are discussed to illustrate representation of concepts at various levels (generic or specific) and the modelling of various semantics. Furthermore, fuzzy modelling and reasoning are investigated. This investigation consists of literature research and the use of a generic research prototype (examination of Mamdani and Sugeno model types). From theoretical research, fuzzy logic enables the expression of human knowledge with linguistic terms and it could simulate human reasoning in the context of risk analysis and detection. In addition, Hierarchical Fuzzy Systems (HFS) or Hybrid Hierarchical Fuzzy Controllers (HHFC) approaches can be used to manage complexity especially for complex domains. Linguistic fuzzy modelling (LFM) is an aspect that should be considered during fuzzy modelling. From the generic research prototype, fuzzy modelling with the use of ontologies is demonstrated together with their integration in the context of fuzzy rule-based reasoning. It is also considered that Mamdani type of fuzzy models is easier to express human knowledge since the output can be expressed with linguistic terms. However, Sugeno type of fuzzy model could be used from adaptive techniques for optimisation purposes

Combining SOA and BPM Technologies for Cross-System Process Automation

This paper summarizes the results of an industry case study that introduced a cross-system business process automation solution based on a combination of SOA and BPM standard technologies (i.e., BPMN, BPEL, WSDL). Besides discussing major weaknesses of the existing, custom-built, solution and comparing them against experiences with the developed prototype, the paper presents a course of action for transforming the current solution into the proposed solution. This includes a general approach, consisting of four distinct steps, as well as specific action items that are to be performed for every step. The discussion also covers language and tool support and challenges arising from the transformation

Applying FML and fuzzy ontologies to malware behavioural analysis

Antimalware applications represent one of the most important research topic in the area of information security threat. Indeed, most computer network issues have malwares as their underlying cause. As a consequence, enhanced systems for analyzing the behavior of malwares are needed in order to try to predict their malicious actions and minimize eventual computer damages. However, because the environments where malwares operate are characterized by high levels of imprecision and vagueness, the conventional data analysis tools lack to deal with these computer safety applications. This work tries to bridge this gap by integrating semantic technologies and computational intelligence methods, such as the Fuzzy Ontologies and Fuzzy Markup Language (FML), in order to propose an advanced semantic decision making system that, as shown by experimental results, achieves good performances in terms of malicious programs identification

Proceedings of the 2nd Conference on Production Systems and Logistics (CPSL 2021)

Proceedings of the CPSL 202