• PDF / 313,484 Bytes
• 12 Pages / 439.37 x 666.142 pts Page_size
• 45 Downloads / 257 Views

DOWNLOAD

REPORT

Abstract. The evolution of ubiquitous smartphone devices has given rise to great opportunities with respect to the development of applications and services, many of which rely on sensitive user information. This explosion on the demand of smartphone applications has made them attractive to cybercriminals that develop mobile malware to gain access to sensitive data stored on smartphone devices. Traditional mobile malware detection approaches that can be roughly classified to signaturebased and heuristic-based have essential drawbacks. The former rely on existing malware signatures and therefore cannot detect zero-day malware and the latter are prone to false positive detections. In this paper, we propose a heuristic-based approach that quantifies the uncertainty involved in each malware detection. In particular, our approach is based on a novel machine learning framework, called Conformal Prediction, for providing valid measures of confidence for each individual prediction, combined with a Multilayer Perceptron. Our experimental results on a real Android device demonstrate the empirical validity and both the informational and computational efficiency of our approach. Keywords: Malware detection · Android · Security · Inductive Conformal Prediction · Confidence measures · Multilayer Perceptron

1

Introduction

The widespread deployment of smartphone devices has brought a revolution in mobile applications and services that span from simple messaging and calling applications to more sensitive financial transactions and internet banking services. As a result, a great deal of sensitive information, such as access passwords and credit card numbers, are stored on smartphone devices, which has made them a very attractive target for cybercriminals. More specifically, a significant increase of malware attacks was observed in the past few years, aiming at stealing private information and sending it to unauthorized third-parties. Mobile malware are malicious software used to gather information and/or gain access to mobile computer devices such as smartphones or tablets. In particular, they are packaged and redistributed with third-party applications to inject c IFIP International Federation for Information Processing 2016  Published by Springer International Publishing Switzerland 2016. All Rights Reserved L. Iliadis and I. Maglogiannis (Eds.): AIAI 2016, IFIP AICT 475, pp. 407–418, 2016. DOI: 10.1007/978-3-319-44944-9 35

408

N. Georgiou et al.

malicious content into a smartphone and therefore expose the device’s security. While the first one appeared in 2004 targeting the Nokia Symbian OS [1], in the fourth quarter of 2015 G DATA security experts reported discovering 8,240 new malware applications on average per day and a total of 2.3 million new malware samples in 2015, in just the Android OS [2]. When malware compromises a smartphone, it can illegally watch and impersonate its user, participate in dangerous botnet activities without the user’s consent and capture user’s personal data. Mobile malware detection techniques can be c

Recommend Documents

Emulation Versus Instrumentation for Android Malware Detection

215 107 9MB

Android Malware

201 93 2MB

Android Malware Detection via Behavior-Based Features

205 34 24MB

Effective Android Malware Detection Based on Deep Learning

225 7 61MB

A Survey of Intelligent Techniques for Android Malware Detection

206 97 23MB

Methods to Select Features for Android Malware Detection Based on the Protection Level Analysis

196 17 34MB

Machine Learning-Based Lightweight Android Malware Detection System with Static Features

188 106 22MB

GroDDViewer: Dynamic Dual View of Android Malware

209 37 13MB

Robust Android Malware Detection System Against Adversarial Attacks Using Q-Learning

169 79 5MB

SOMDROID: android malware detection by artificial neural network trained using unsupervised learning

195 99 7MB

An Exploration of Changes Addressed in the Android Malware Detection Walkways

190 81 6MB

AndrOpGAN: An Opcode GAN for Android Malware Obfuscations

113 47 66MB