The Concept of Attack Scenarios and its Applications in Android Malware Detection
Date Issued
2015
Date
2015
Author(s)
Chang, Yu-Chen
Abstract
In this paper, we proposed the concept of attack scenarios, learned and selected from a set of malicious applications and described by sets of Android APIs, to characterize Android malware. Because of its characteristics that produce almost no false-positive, attack scenarios can be used as a pre-filter of machine-learning based detectors to enhance the detection performance at low false-positive rate. By combining different machine learning techniques, we demonstrate that the proposed approach can increase the detection rates. To evaluate our approach, we analyze 20,914 Android application containing 3,145 malicious samples on two different machine learning techniques, KNN and SVM. The experiment results show that the proposed approach can raise the detection rate up to 95.9% malware at 1% false positive rate and 95.9% malware at 0.1% false positive rate respectively.
Subjects
malware detection
static analysis
attack scenario
machine learning
Type
thesis
File(s)![Thumbnail Image]()
Loading...
Name
ntu-104-R02921033-1.pdf
Size
23.32 KB
Format
Adobe PDF
Checksum
(MD5):75c5760084b594bbda4e88f065802528