Droidward: an effective dynamic analysis method for vetting android applications | |
Yang, Yubin1; Wei, Zongtao2; Xu, Yong1; He, Haiwu3; Wang, Wei2 | |
刊名 | Cluster computing-the journal of networks software tools and applications |
2018-05-01 | |
卷号 | 21期号:1页码:265-275 |
关键词 | Android security Malware analysis Malware detection Dynamic analysis |
ISSN号 | 1386-7857 |
DOI | 10.1007/s10586-016-0703-5 |
通讯作者 | Yang, yubin(ronald_yang@126.com) |
英文摘要 | As the number of android malicious applications has explosively increased, effectively vetting android applications (apps) has become an emerging issue. traditional static analysis is ineffective for vetting apps whose code have been obfuscated or encrypted. dynamic analysis is suitable to deal with the obfuscation and encryption of codes. however, existing dynamic analysis methods cannot effectively vet the applications, as a limited number of dynamic features have been explored from apps that have become increasingly sophisticated. in this work, we propose an effective dynamic analysis method called droidward in the aim to extract most relevant and effective features to characterize malicious behavior and to improve the detection accuracy of malicious apps. in addition to using the existing 9 features, droidward extracts 6 novel types of effective features from apps through dynamic analysis. droidward runs apps, extracts features and identifies benign and malicious apps with support vector machine (svm), decision tree (dtree) and random forest. 666 android apps are used in the experiments and the evaluation results show that droidward correctly classifies 98.54% of malicious apps with 1.55% of false positives. compared to existing work, droidward improves the tpr with 16.07% and suppresses the fpr with 1.31% with svm, indicating that it is more effective than existing methods. |
WOS关键词 | AUDIT DATA STREAMS ; INTRUSION ; ENCRYPTION |
WOS研究方向 | Computer Science |
WOS类目 | Computer Science, Information Systems ; Computer Science, Theory & Methods |
语种 | 英语 |
出版者 | SPRINGER |
WOS记录号 | WOS:000457272700022 |
内容类型 | 期刊论文 |
URI标识 | http://www.corc.org.cn/handle/1471x/2374263 |
专题 | 计算机网络信息中心 |
通讯作者 | Yang, Yubin |
作者单位 | 1.South China Univ Technol, Sch Comp Sci & Engn, Guangzhou 510641, Guangdong, Peoples R China 2.Beijing Jiaotong Univ, Sch Comp & Informat Technol, Beijing 100044, Peoples R China 3.Chinese Acad Sci, Comp Network Informat Ctr, Beijing 100190, Peoples R China |
推荐引用方式 GB/T 7714 | Yang, Yubin,Wei, Zongtao,Xu, Yong,et al. Droidward: an effective dynamic analysis method for vetting android applications[J]. Cluster computing-the journal of networks software tools and applications,2018,21(1):265-275. |
APA | Yang, Yubin,Wei, Zongtao,Xu, Yong,He, Haiwu,&Wang, Wei.(2018).Droidward: an effective dynamic analysis method for vetting android applications.Cluster computing-the journal of networks software tools and applications,21(1),265-275. |
MLA | Yang, Yubin,et al."Droidward: an effective dynamic analysis method for vetting android applications".Cluster computing-the journal of networks software tools and applications 21.1(2018):265-275. |
个性服务 |
查看访问统计 |
相关权益政策 |
暂无数据 |
收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论