A static Android malicious code detection method based on multi-source fusion
作者: Yao Du , Xiaoqing Wang , Junfeng Wang
DOI: 10.1002/SEC.1248
关键词:
摘要: The rapid development of mobile malwares makes the traditional signature-based and single-feature based malware detection methods a challenging task. surge new with more complex structures dynamic characteristics leads to efficient fusion multi-source malicious information difficult in detection. In this paper, we propose method detect Android by emphasizing on static features, control flow graph, repacking characteristics. Each category features is treated as an independent source feature extracting rules building classification. Then, Dempster-Shafer algorithm used fuse these sources. This can improve accuracy without adding too many instability that are extracted from disassembled codes, have better performance resistance code obfuscation technologies. To verify our method, different categories apps collected build dataset experiment. Based dataset, achieve 97% 1.9% false positive rate. Copyright © 2015John Wiley & Sons, Ltd.
acm.org
sci-hub.se 参考文章(15)
Min Zhao, Fangbin Ge, Tao Zhang, Zhijian Yuan, AntiMalDroid: An Efficient SVM-Based Malware Detection Framework for Android international conference on information computing and applications. pp. 158- 166 ,(2011) , 10.1007/978-3-642-27503-6_22
Yousra Aafer, Wenliang Du, Heng Yin, DroidAPIMiner: Mining API-Level Features for Robust Malware Detection in Android Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering. pp. 86- 103 ,(2013) , 10.1007/978-3-319-04283-1_6
Borja Sanz, Igor Santos, Carlos Laorden, Xabier Ugarte-Pedrero, Javier Nieves, Pablo G Bringas, Gonzalo Álvarez Marañón, None, MAMA: MANIFEST ANALYSIS FOR MALWARE DETECTION IN ANDROID Cybernetics and Systems. ,vol. 44, pp. 469- 488 ,(2013) , 10.1080/01969722.2013.803889
William Enck, Patrick McDaniel, Jaeyeon Jung, Byung-Gon Chun, Peter Gilbert, Anmol N. Sheth, Landon P. Cox, TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones operating systems design and implementation. pp. 393- 407 ,(2010) , 10.5555/1924943.1924971
Thomas Bläsing, Leonid Batyuk, Aubrey-Derrick Schmidt, Seyit Ahmet Camtepe, Sahin Albayrak, An Android Application Sandbox system for suspicious software detection international conference on malicious and unwanted software. pp. 55- 62 ,(2010) , 10.1109/MALWARE.2010.5665792
Dong-Jie Wu, Ching-Hao Mao, Te-En Wei, Hahn-Ming Lee, Kuo-Ping Wu, DroidMat: Android Malware Detection through Manifest and API Calls Tracing information security. pp. 62- 69 ,(2012) , 10.1109/ASIAJCIS.2012.18
Justin Sahs, Latifur Khan, A Machine Learning Approach to Android Malware Detection european intelligence and security informatics conference. pp. 141- 147 ,(2012) , 10.1109/EISIC.2012.34
Hugo Gascon, Fabian Yamaguchi, Daniel Arp, Konrad Rieck, Structural detection of android malware using embedded call graphs Proceedings of the 2013 ACM workshop on Artificial intelligence and security. pp. 45- 54 ,(2013) , 10.1145/2517312.2517315
Arthur P. Dempster, Upper and Lower Probabilities Induced by a Multivalued Mapping Classic Works of the Dempster-Shafer Theory of Belief Functions. ,vol. 38, pp. 57- 72 ,(1967) , 10.1007/978-3-540-44792-4_3
Yingjie Zhou, Guangmin Hu, Dapeng Wu, A data mining system for distributed abnormal event detection in backbone networks Security and Communication Networks. ,vol. 7, pp. 904- 913 ,(2014) , 10.1002/SEC.801