Machine learning-based dynamic analysis of Android apps with improved code coverage
作者: Suleiman Y. Yerima , Mohammed K. Alzaylaee , Sakir Sezer
DOI: 10.1186/S13635-019-0087-1
关键词:
摘要: This paper investigates the impact of code coverage on machine learning-based dynamic analysis Android malware. In order to maximize coverage, typically requires generation events trigger user interface and discovery run-time behavioral features. The commonly used event approach in most existing systems is random-based implemented with Monkey tool that comes SDK. utilized popular platforms like AASandbox, vetDroid, MobileSandbox, TraceDroid, Andrubis, ANANAS, DynaLog, HADM. this paper, we propose investigate approaches based stateful compare their capabilities state-of-the-practice approach. two proposed are state-based method (implemented DroidBot) a hybrid combines methods. We three different input methods real devices, terms ability log behavior features various learning algorithms utilize for malware detection. Experiments performed using 17,444 applications show overall, provide much better which turn leads more accurate detection compared state-of- the- art
springeropen.com
springer.com
sci-hub.se 参考文章(57)
Gianluca Dini, Fabio Martinelli, Andrea Saracino, Daniele Sgandurra, MADAM: A Multi-level Anomaly Detector for Android Malware Lecture Notes in Computer Science. pp. 240- 253 ,(2012) , 10.1007/978-3-642-33704-8_21
Suleiman Y. Yerima, Sakir Sezer, Igor Muttik, Android malware detection: An eigenspace analysis approach science and information conference. pp. 1236- 1242 ,(2015) , 10.1109/SAI.2015.7237302
Jeremy Lee Erickson, Yung Ryn Choe, David Jakob Fritz, Michael Bierma, Eric Gustafson, Andlantis: Large-scale Android Dynamic Analysis. arXiv: Cryptography and Security. ,(2014)
Martina Lindorfer, Matthias Neugschwandtner, Christian Platzer, None, MARVIN: Efficient and Comprehensive Mobile App Classification through Static and Dynamic Analysis computer software and applications conference. ,vol. 2, pp. 422- 433 ,(2015) , 10.1109/COMPSAC.2015.103
Domenico Amalfitano, Anna Rita Fasolino, Porfirio Tramontana, Bryan Dzung Ta, Atif M. Memon, MobiGUITAR: Automated Model-Based Testing of Mobile Apps IEEE Software. ,vol. 32, pp. 53- 59 ,(2015) , 10.1109/MS.2014.55
Yousra Aafer, Wenliang Du, Heng Yin, DroidAPIMiner: Mining API-Level Features for Robust Malware Detection in Android Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering. pp. 86- 103 ,(2013) , 10.1007/978-3-319-04283-1_6
William Enck, Patrick McDaniel, Jaeyeon Jung, Byung-Gon Chun, Peter Gilbert, Anmol N. Sheth, Landon P. Cox, TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones operating systems design and implementation. pp. 393- 407 ,(2010) , 10.5555/1924943.1924971
Asaf Shabtai, Uri Kanonov, Yuval Elovici, Chanan Glezer, Yael Weiss, Andromaly: a behavioral malware detection framework for android devices intelligent information systems. ,vol. 38, pp. 161- 190 ,(2012) , 10.1007/S10844-010-0148-X
Markus Zeilinger, Michael Rodler, Dieter Vymazal, Thomas Eder, ANANAS - A Framework for Analyzing Android Applications availability, reliability and security. pp. 711- 719 ,(2013) , 10.1109/ARES.2013.93
Yuan Zhang, Min Yang, Bingquan Xu, Zhemin Yang, Guofei Gu, Peng Ning, X. Sean Wang, Binyu Zang, Vetting undesirable behaviors in android apps with permission use analysis computer and communications security. pp. 611- 622 ,(2013) , 10.1145/2508859.2516689