A Survey of Visualization Systems for Malware Analysis

Thumbnail Image
Files
Wagner_2-y6hck7oiswhx2.pdf(764.73 KB)
Date
2015
Authors
Wagner, Markus
Luh, Robert
Haberson, Andrea
Rind, Alexander
Aigner, Wolfgang
Editors
Contact
Journal ISSN
Electronic ISSN
ISBN
Bibliographical data
Publisher
Series
URI (citable link)
urn:nbn:de:bsz:352-2-y6hck7oiswhx2
DOI (citable link)
10.2312/eurovisstar.20151114
ArXiv-ID
International patent number
Link to the license
In Copyright
EU project number
Project
Open Access publication
Collections
Informatik und Informationswissenschaft
Restricted until
Title in another language
Research Projects
Organizational Units
Journal Issue
Publication type
Contribution to a conference collection
Publication status
Published
Published in
Eurographics Conference on Visualization (EuroVis) ; STARs - State of The Art Reports / Rita Borgo et al. (ed.). - The Eurographics Association, 2015. - pp. 105-125
Abstract
Due to the increasing threat from malicious software (malware), monitoring of vulnerable systems is becoming increasingly important. The need to log and analyze activity encompasses networks, individual computers, as well as mobile devices. While there are various automatic approaches and techniques available to detect, identify, or capture malware, the actual analysis of the ever-increasing number of suspicious samples is a time-consuming process for malware analysts. The use of visualization and highly interactive visual analytics systems can help to support this analysis process with respect to investigation, comparison, and summarization of malware samples. Currently, there is no survey available that reviews available visualization systems supporting this important and emerging field. We provide a systematic overview and categorization of malware visualization systems from the perspective of visual analytics. Additionally, we identify and evaluate data providers and commercial tools that produce meaningful input data for the reviewed malware visualization systems. This helps to reveal data types that are currently underrepresented, enabling new research opportunities in the visualization community.
Summary in another language
Subject (DDC)
004 Computer Science
Keywords
Conference
Eurographics Conference on Visualization (EuroVis), May 25, 2015 - May 29, 2015, Cagliari
Review
undefined / . - undefined, undefined. - (undefined; undefined)
Cite This
ISO 690WAGNER, Markus, Fabian FISCHER, Robert LUH, Andrea HABERSON, Alexander RIND, Daniel A. KEIM, Wolfgang AIGNER, 2015. A Survey of Visualization Systems for Malware Analysis. Eurographics Conference on Visualization (EuroVis). Cagliari, May 25, 2015 - May 29, 2015. In: RITA BORGO, , ed. and others. Eurographics Conference on Visualization (EuroVis) ; STARs - State of The Art Reports. The Eurographics Association, pp. 105-125. Available under: doi: 10.2312/eurovisstar.20151114
BibTex
@inproceedings{Wagner2015Surve-32444,
  year={2015},
  doi={10.2312/eurovisstar.20151114},
  title={A Survey of Visualization Systems for Malware Analysis},
  publisher={The Eurographics Association},
  booktitle={Eurographics Conference on Visualization (EuroVis) ; STARs - State of The Art Reports},
  pages={105--125},
  editor={Rita Borgo},
  author={Wagner, Markus and Fischer, Fabian and Luh, Robert and Haberson, Andrea and Rind, Alexander and Keim, Daniel A. and Aigner, Wolfgang}
}
RDF
<rdf:RDF
    xmlns:dcterms="http://purl.org/dc/terms/"
    xmlns:dc="http://purl.org/dc/elements/1.1/"
    xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
    xmlns:bibo="http://purl.org/ontology/bibo/"
    xmlns:dspace="http://digital-repositories.org/ontologies/dspace/0.1.0#"
    xmlns:foaf="http://xmlns.com/foaf/0.1/"
    xmlns:void="http://rdfs.org/ns/void#"
    xmlns:xsd="http://www.w3.org/2001/XMLSchema#" > 
  <rdf:Description rdf:about="https://kops.uni-konstanz.de/server/rdf/resource/123456789/32444">
    <dcterms:issued>2015</dcterms:issued>
    <dc:language>eng</dc:language>
    <dc:date rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2015-12-16T10:29:50Z</dc:date>
    <dc:contributor>Wagner, Markus</dc:contributor>
    <dc:creator>Aigner, Wolfgang</dc:creator>
    <dc:creator>Keim, Daniel A.</dc:creator>
    <dcterms:abstract xml:lang="eng">Due to the increasing threat from malicious software (malware), monitoring of vulnerable systems is becoming increasingly important. The need to log and analyze activity encompasses networks, individual computers, as well as mobile devices. While there are various automatic approaches and techniques available to detect, identify, or capture malware, the actual analysis of the ever-increasing number of suspicious samples is a time-consuming process for malware analysts. The use of visualization and highly interactive visual analytics systems can help to support this analysis process with respect to investigation, comparison, and summarization of malware samples. Currently, there is no survey available that reviews available visualization systems supporting this important and emerging field. We provide a systematic overview and categorization of malware visualization systems from the perspective of visual analytics. Additionally, we identify and evaluate data providers and commercial tools that produce meaningful input data for the reviewed malware visualization systems. This helps to reveal data types that are currently underrepresented, enabling new research opportunities in the visualization community.</dcterms:abstract>
    <foaf:homepage rdf:resource="http://localhost:8080/"/>
    <dc:rights>terms-of-use</dc:rights>
    <dc:contributor>Fischer, Fabian</dc:contributor>
    <dc:creator>Luh, Robert</dc:creator>
    <dspace:hasBitstream rdf:resource="https://kops.uni-konstanz.de/bitstream/123456789/32444/1/Wagner_2-y6hck7oiswhx2.pdf"/>
    <dc:contributor>Keim, Daniel A.</dc:contributor>
    <dc:contributor>Rind, Alexander</dc:contributor>
    <dc:creator>Fischer, Fabian</dc:creator>
    <void:sparqlEndpoint rdf:resource="http://localhost/fuseki/dspace/sparql"/>
    <dcterms:rights rdf:resource="https://rightsstatements.org/page/InC/1.0/"/>
    <dcterms:hasPart rdf:resource="https://kops.uni-konstanz.de/bitstream/123456789/32444/1/Wagner_2-y6hck7oiswhx2.pdf"/>
    <dc:contributor>Luh, Robert</dc:contributor>
    <bibo:uri rdf:resource="https://kops.uni-konstanz.de/handle/123456789/32444"/>
    <dcterms:isPartOf rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
    <dc:contributor>Haberson, Andrea</dc:contributor>
    <dcterms:available rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2015-12-16T10:29:50Z</dcterms:available>
    <dspace:isPartOfCollection rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
    <dcterms:title>A Survey of Visualization Systems for Malware Analysis</dcterms:title>
    <dc:contributor>Aigner, Wolfgang</dc:contributor>
    <dc:creator>Wagner, Markus</dc:creator>
    <dc:creator>Haberson, Andrea</dc:creator>
    <dc:creator>Rind, Alexander</dc:creator>
  </rdf:Description>
</rdf:RDF>
Internal note
xmlui.Submission.submit.DescribeStep.inputForms.label.kops_note_fromSubmitter
Contact
URL of original publication
Test date of URL
Examination date of dissertation
Method of financing
Comment on publication
Alliance license
Corresponding Authors der Uni Konstanz vorhanden
International Co-Authors
Bibliography of Konstanz
Yes
Refereed