THE EFFECT OF MALWARE’S APIS RELATIONS ON SOFTWARE SECURITY DESIGN
Recent years have witnessed a great revolution in web technologies and their applications. Most of these applications are connected to the Internet. One of the most frequent issues in these applications is the security issue. Malware is the main reason behind this issue since they harm users in many different aspects such as damaging files, stealing credentials, operating system malfunctioning, etc. Therefore, many companies around the world develop antiviruses software aiming to mitigate the security issue. Most of the known viruses can access users’ computers or web accounts through some APIs. Therefore, antivirus companies try to update the API databases of their software periodically. This paper suggests a method for investigating the relations among different kinds of malware in terms of the API they used. Then, it provides recommendations about this malware and its APIs. The method followed in this work is based on concepts inspired by network science. The malware and its APIs are modeled as a network with nodes and edges. The results show interesting facts about the investigated malware that are of interest for software security architects and give the relations between various malware which call the same API function, depending on that malicious software behavior can be detected by antivirus or anti-malware engine.
Keywords: cyber security, Malware analysis, Software Security, APIs call, Network Science.