Abstract: The continuous updating of antivirus database with malware signatures degrades the efficiency of the antivirus system. Existing antivirus researchers are finding ways making the malware signatures database gets currents signatures of merging malware threats. However, the astronomical increase in the number of malware signatures update, thereby reducing the performance of the computer system. Consequently in this paper, an attempt was made to group individual malware signatures into a similar pattern, called the family malware signatures. Each group of family malware signatures, cancels all the individual malware signatures with similar patterns into that group of malware signature. The first advantage of this single grouping of malware signature is, the searching time to attempt matching a pattern of executable file with malware signature will be reduce. Another advantage of this approach is in the reduction of many individual malware signatures into a single group of malware signature, hence, reducing the number of signatures in antivirus database and at the same time, making antivirus database more scalable.
Keywords: Antivirus, signatures database, Malware signatures, malware code.
Title: Improved Signature-Based Antivirus System
Author: Osaghae E. O.
International Journal of Computer Science and Information Technology Research
ISSN 2348-1196 (print), ISSN 2348-120X (online)
Research Publish Journals
