A Distributed Framework for Collaborative and Dynamic Analysis of Android Malware

被引:13
作者
Faiella, Mario [1 ]
La Marra, Antonio [1 ]
Martinelli, Fabio [1 ]
Mercaldo, Francesco [1 ]
Saracino, Andrea [1 ]
Sheikhalishahi, Mina [1 ]
机构
[1] CNR, Ist Informat & Telemat, Pisa, Italy
来源
2017 25TH EUROMICRO INTERNATIONAL CONFERENCE ON PARALLEL, DISTRIBUTED AND NETWORK-BASED PROCESSING (PDP 2017) | 2017年
基金
欧盟地平线“2020”;
关键词
D O I
10.1109/PDP.2017.99
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Combination of dynamic and static analysis is very effective in detecting malicious Android apps. However, dynamic analysis is hardly practiced on large scale, due to the necessary active interaction with the malicious app, which is reliable only if performed by a user on a real device. In this paper we present a framework for distributed and collaborative analysis of Android suspicious apps, which leverages real users to test the functionality of apps and detect eventual malicious behaviors by exploiting an on-host app for intrusion detection. The paper introduces the architecture, workflow and protocols to handle the report received by participating users, detecting and filtering the malicious ones. Simulative results to assess the performance of the proposed framework are reported and discussed.
引用
收藏
页码:321 / 328
页数:8
相关论文
共 50 条
[41]   Glassbox: Dynamic Analysis Platform for Malware Android Applications on Real Devices [J].
Irolla, Paul ;
Filiol, Eric .
ICISSP: PROCEEDINGS OF THE 3RD INTERNATIONAL CONFERENCE ON INFORMATION SYSTEMS SECURITY AND PRIVACY, 2017, :610-621
[42]   Android Malware Analysis and Conceptual Malware Mitigation Approaches [J].
Oh, Tae ;
Kim, Young Ho ;
Moon, Hwa Shin ;
Kim, Jeong Neyo ;
Stackpole, Bill .
2016 INTERNATIONAL CONFERENCE ON INFORMATION AND COMMUNICATION TECHNOLOGY CONVERGENCE (ICTC 2016): TOWARDS SMARTER HYPER-CONNECTED WORLD, 2016, :684-693
[43]   AndroLyze: A Distributed Framework for Efficient Android App Analysis [J].
Baumgaertner, Lars ;
Graubner, Pablo ;
Schmidt, Nils ;
Freisleben, Bernd .
2015 IEEE THIRD INTERNATIONAL CONFERENCE ON MOBILE SERVICES MS 2015, 2015, :73-80
[44]   AdDroid: Rule-Based Machine Learning Framework for Android Malware Analysis [J].
Anam Mehtab ;
Waleed Bin Shahid ;
Tahreem Yaqoob ;
Muhammad Faisal Amjad ;
Haider Abbas ;
Hammad Afzal ;
Malik Najmus Saqib .
Mobile Networks and Applications, 2020, 25 :180-192
[45]   AdDroid: Rule-Based Machine Learning Framework for Android Malware Analysis [J].
Mehtab, Anam ;
Shahid, Waleed Bin ;
Yaqoob, Tahreem ;
Amjad, Muhammad Faisal ;
Abbas, Haider ;
Afzal, Hammad ;
Saqib, Malik Najmus .
MOBILE NETWORKS & APPLICATIONS, 2020, 25 (01) :180-192
[46]   A Framework for Dynamic Malware Analysis Based on Behavior Artifacts [J].
Paul, T. G. Gregory ;
Kumar, T. Gireesh .
PROCEEDINGS OF THE 5TH INTERNATIONAL CONFERENCE ON FRONTIERS IN INTELLIGENT COMPUTING: THEORY AND APPLICATIONS, FICTA 2016, VOL 1, 2017, 515 :551-559
[47]   Hybrid Dynamic Analysis for Android Malware Protected by Anti-Analysis Techniques with DOOLDA [J].
Lee, Sunjun ;
Shin, Yonggu ;
Choi, Minseong ;
Cho, Haehyun ;
Yi, Jeong Hyun .
JOURNAL OF INTERNET TECHNOLOGY, 2024, 25 (02) :195-213
[48]   An Assistive System for Android Malware Analysis to Increase Malware Analysis Efficiency [J].
Jadhav, Suyash ;
Oh, Tae ;
Jeong, Jaehoon ;
Kim, Young Ho ;
Kim, Jeong Neyo .
2017 31ST IEEE INTERNATIONAL CONFERENCE ON ADVANCED INFORMATION NETWORKING AND APPLICATIONS WORKSHOPS (IEEE WAINA 2017), 2017, :370-374
[49]   A collaborative approach on host and network level android malware detection [J].
Bae, Chanwoo ;
Shin, Seungwon .
SECURITY AND COMMUNICATION NETWORKS, 2016, 9 (18) :5639-5650
[50]   A Hybrid Deep Network Framework for Android Malware Detection [J].
Zhu, Hui-Juan ;
Wang, Liang-Min ;
Zhong, Sheng ;
Li, Yang ;
Sheng, Victor S. .
IEEE TRANSACTIONS ON KNOWLEDGE AND DATA ENGINEERING, 2022, 34 (12) :5558-5570
12345