DroidExaminer: An Android Malware Hybrid Detection System Based on Ensemble Learning,ERICDATA高等教育知識庫
高等教育出版
熱門: 程明风  黃昱倫  李明昆  王善边  祝智庭  黃乃熒  
高等教育出版
首頁 臺灣期刊   學校系所   學協會   民間出版   大陸/海外期刊   政府機關   學校系所   學協會   民間出版   DOI註冊服務
篇名
DroidExaminer: An Android Malware Hybrid Detection System Based on Ensemble Learning
並列篇名
DroidExaminer: An Android Malware Hybrid Detection System Based on Ensemble Learning
作者 Zhongxiang ZhanSai JiWenying ZhengDengzhi Liu
英文摘要

Android is an open-source mobile operating system, with more than 70% of the mobile market share, widely popular on various intelligent devices. At the same time, the number of new malicious applications keeps increasing every year. In this paper, we first discuss the advantages and disadvantages of various detection methods for malicious software. A single detection method can only cover specific types of malware. Therefore, we propose a system that combines static structural analysis and dynamic detection of malware. This system has dual detection capability, which consists of a client and a server. The client is a lightweight Android application that is used to obtain the relevant data information of the installation package. The server is responsible for static analysis of APK and dynamic running of monitoring logs to get the relevant feature information. Based on the feature information, the Bagging algorithm of ensemble learning is adopted, and the decision tree and random forest are combined to identify the malware accurately. We collected 4210 Android software samples, with malicious apps accounting for about 20% of the total. Cross-testing of malware detection on this sample set showed that DroidExaminer achieved approximately 96% accuracy in detecting malware. It can resist confusion and conversion techniques, and the test performance overhead is less. In addition, DroidExaminer can alert the user to the details of malware intrusion so that the user can prevent malware intrusion.

 

起訖頁 105-116
關鍵詞 Android malwareSoftware detectionAndroid software safetyHybrid detection
刊名 網際網路技術學刊  
期數 202401 (25:1期)
出版單位 台灣學術網路管理委員會
DOI 10.53106/160792642024012501009   複製DOI
QR Code
該期刊
上一篇
RDVFF- Reliable Data Dissemination in Vehicular Ad Hoc Networks Based on Validation of Far to Farthest Zone
該期刊
下一篇
Stories from a Customized Honeypot for the IoT

高等教育知識庫  閱讀計畫  教育研究月刊  新書優惠  

教師服務
合作出版
期刊徵稿
聯絡高教
高教FB
讀者服務
圖書目錄
教育期刊
訂購服務
活動訊息
數位服務
高等教育知識庫
國際資料庫收錄
投審稿系統
DOI註冊
線上購買
高點網路書店 
元照網路書店
博客來網路書店
教育資源
教育網站
國際教育網站
關於高教
高教簡介
出版授權
合作單位
知識達 知識達 知識達 知識達 知識達 知識達
版權所有‧轉載必究 Copyright2011 高等教育文化事業股份有限公司  All Rights Reserved
服務信箱:edubook@edubook.com.tw 台北市館前路 26 號 6 樓 Tel:+886-2-23885899 Fax:+886-2-23892500