Security experts have not formally defined the distinction between viruses and normal programs. The paper takes user's intension as the criteria for malice, gives a formal definition of viruses that aim at stealing o...Security experts have not formally defined the distinction between viruses and normal programs. The paper takes user's intension as the criteria for malice, gives a formal definition of viruses that aim at stealing or destroying files, and proposes an algorithm to detect virus correctly. Compared with traditional definitions, this new definition is easy to understand, covers more malwares, adapts development of virus technology, and defines virus on the spot. The paper has also analyzed more than 250 real viruses and finds that they are all in the domain of the new definition, this implies that the new definition has great practical significance.展开更多
基金Supported by the Foundation of National Labora-tory for Modern Communications(51436050505KG0101)
文摘Security experts have not formally defined the distinction between viruses and normal programs. The paper takes user's intension as the criteria for malice, gives a formal definition of viruses that aim at stealing or destroying files, and proposes an algorithm to detect virus correctly. Compared with traditional definitions, this new definition is easy to understand, covers more malwares, adapts development of virus technology, and defines virus on the spot. The paper has also analyzed more than 250 real viruses and finds that they are all in the domain of the new definition, this implies that the new definition has great practical significance.
