Mining Android Apps for Anomalies
作者: Konstantin Kuznetsov , Alessandra Gorla , Ilaria Tavecchia , Florian Groß , Andreas Zeller
DOI: 10.1016/B978-0-12-411519-4.00010-0
关键词:
摘要: Abstract How do we know a program does what it claims to do? Our CHABADA prototype can cluster Android™ apps by their description topics and identify outliers in each with respect API usage. A “weather” app that sends messages thus becomes an anomaly; likewise, “messaging” would typically not be expected access the current location also identified. In this paper present new approach for anomaly detection improves classification results of our original [ 1 ]. Applied on set 22,500+ Android applications, now predict 74% novel malware as such, without requiring any known patterns, maintains false positive rate close 10%.
sci-hub.se 参考文章(36)
Tao Xie, Rahul Pandita, William Enck, Xusheng Xiao, Wei Yang, WHYPER: towards automating risk assessment of mobile applications usenix security symposium. pp. 527- 542 ,(2013)
Stan Matwin, Miroslav Kubat, Addressing the Curse of Imbalanced Training Sets: One-Sided Selection. international conference on machine learning. pp. 179- 186 ,(1997)
Arthur Zimek, Hans-Peter Kriegel, Erich Schubert, Peer Kröger, Interpreting and Unifying Outlier Scores siam international conference on data mining. pp. 13- 24 ,(2011)
Wei Yang, Mukul R. Prasad, Tao Xie, A grey-box approach for automated GUI-model generation of mobile applications fundamental approaches to software engineering. pp. 250- 265 ,(2013) , 10.1007/978-3-642-37057-1_19
Fabrizio Angiulli, Clara Pizzuti, Fast Outlier Detection in High Dimensional Spaces european conference on principles of data mining and knowledge discovery. pp. 15- 26 ,(2002) , 10.1007/3-540-45681-3_2
Hinrich Schütze, Christopher D. Manning, Prabhakar Raghavan, Introduction to Information Retrieval ,(2005)
Angelos D. Keromytis, Krysta Svore, Salvatore Stolfo, Katherine Heller, One Class Support Vector Machines for Detecting Anomalous Windows Registry Accesses Workshop on Data Mining for Computer Security (DMSEC), Melbourne, FL, November 19, 2003. pp. 2- 9 ,(2003) , 10.7916/D84B39Q0
Raymond T. Ng, Edwin M. Knorr, Algorithms for Mining Distance-Based Outliers in Large Datasets very large data bases. pp. 392- 403 ,(1998)
Bernhard Schölkopf, Alexander J. Smola, Learning with Kernels The MIT Press. pp. 626- ,(2018) , 10.7551/MITPRESS/4175.001.0001
Einar W. Høst, Bjarte M. Østvold, Debugging Method Names european conference on object oriented programming. pp. 294- 317 ,(2009) , 10.1007/978-3-642-03013-0_14