节点文献

基于层次分析法的智能手机恶意软件静态检测及评价模型(英文)

Malware Detection in Smartphones Using Static Detection and Evaluation Model Based on Analytic Hierarchy Process

  • 推荐 CAJ下载
  • PDF下载
  • 不支持迅雷等下载工具,请取消加速工具后下载。

【作者】 张淼杨有秀程工董航李承泽

【Author】 Zhang Miao1,Yang Youxiu1,Cheng Gong2,Dong Hang1,Li Chengze1 1 National Engineering Laboratory for Disaster Backup and Recovery,Beijing University of Posts and Telecommunications,Beijing 100876,P.R.China 2 National Computer Network Emergency Response Technical Team/Coordination Center of China,Beijing 100029,P.R.China

【机构】 National Engineering Laboratory for Disaster Backup and Recovery,Beijing University of Posts and TelecommunicationsNational Computer Network Emergency Response Technical Team/Coordination Center of China

【摘要】 Mobile malware is rapidly increasing and its detection has become a critical issue.In this study,we summarize the common characteristics of this malicious software on Android platform.We design a detection engine consisting of six parts:decompile,grammar parsing,control flow and data flow analysis,safety analysis,and comprehensive evaluation.In the comprehensive evaluation,we obtain a weight vector of 29 evaluation indexes using the analytic hierarchy process.During this process,the detection engine exports a list of suspicious API.On the basis of this list,the evaluation part of the engine performs a comprehensive evaluation of the hazard assessment of software sample.Finally,hazard classification is given for the software.The false positive rate of our approach for detecting malware samples is 4.7% and normal samples is 7.6%.The experimental results show that the accuracy rate of our approach is almost similar to the method based on virus signatures.Compared with the method based on virus signatures,our approach performs well in detecting unknown malware.This approach is promising for the application of malware detection.

【Abstract】 Mobile malware is rapidly increasing and its detection has become a critical issue.In this study,we summarize the common characteristics of this malicious software on Android platform.We design a detection engine consisting of six parts:decompile,grammar parsing,control flow and data flow analysis,safety analysis,and comprehensive evaluation.In the comprehensive evaluation,we obtain a weight vector of 29 evaluation indexes using the analytic hierarchy process.During this process,the detection engine exports a list of suspicious API.On the basis of this list,the evaluation part of the engine performs a comprehensive evaluation of the hazard assessment of software sample.Finally,hazard classification is given for the software.The false positive rate of our approach for detecting malware samples is 4.7% and normal samples is 7.6%.The experimental results show that the accuracy rate of our approach is almost similar to the method based on virus signatures.Compared with the method based on virus signatures,our approach performs well in detecting unknown malware.This approach is promising for the application of malware detection.

【关键词】 smartphonemalwareanalytic hierarchy processstatic detection
【Key words】 smartphonemalwareanalytic hierarchy processstatic detection
【基金】 supported by Major National Science and Technology Projects(No.3) under Grant No. 2012ZX03002012
  • 【文献出处】 中国通信 ,China Communications , 编辑部邮箱 ,2012年12期
  • 【分类号】TN929.53;TN915.08
  • 【被引频次】6
  • 【下载频次】183
知网节下载
节点文献中: 

本文链接的文献网络图示:

本文的引文网络
二级参考文献(0)
参考文献(0)
共引文献(0)
节点文献
同被引文献(0)
引证文献(0)
二级引证文献(0)