Android Malware Network Behavior Analysis at HTTP Protocol Packet Level

被引:1
|
作者
Wang, Shanshan [1 ]
Hou, Shifeng [2 ]
Zhang, Lei [1 ]
Chen, Zhenxiang [1 ]
Han, Hongbo [1 ]
机构
[1] Univ Jinan, Sch Informat Sci & Engn, Jinan 250022, Peoples R China
[2] Lib Rizhao Polytech, Rizhao 276826, Peoples R China
来源
ALGORITHMS AND ARCHITECTURES FOR PARALLEL PROCESSING, ICA3PP 2015 | 2015年 / 9532卷
关键词
Android; Malware; Network traffic; Analyze; Detection;
D O I
10.1007/978-3-319-27161-3_45
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Smart phones, particularly the ones based on Android, have become the most popular devices. The surfing habits of users have been changed from the traditional PC terminal to mobile terminal officially. However, the mobile terminal application exposes more and more problems. Two common ways to analyze malware are source code analysis and dynamic behavior analysis. Researchers pay little attention to the network traffic generated by mobile terminal application. Nevertheless, shell technology makes source code analysis difficult while dynamic behavior analysis consumes too much resource. In fact, normal application and malware perform differently at the network level. We found that the features of HTTP packet are dramatically different in normal traffic and malicious traffic dataset. The application analysis from the perspective of network traffic can provide us a new way to detect malware.
引用
收藏
页码:497 / 507
页数:11
相关论文
共 50 条
  • [11] Android Malware Analysis and Conceptual Malware Mitigation Approaches
    Oh, Tae
    Kim, Young Ho
    Moon, Hwa Shin
    Kim, Jeong Neyo
    Stackpole, Bill
    2016 INTERNATIONAL CONFERENCE ON INFORMATION AND COMMUNICATION TECHNOLOGY CONVERGENCE (ICTC 2016): TOWARDS SMARTER HYPER-CONNECTED WORLD, 2016, : 684 - 693
  • [12] Static and Dynamic Analysis of Android Malware
    Kapratwar, Ankita
    Di Troia, Fabio
    Stamp, Mark
    ICISSP: PROCEEDINGS OF THE 3RD INTERNATIONAL CONFERENCE ON INFORMATION SYSTEMS SECURITY AND PRIVACY, 2017, : 653 - 662
  • [13] An Analysis of Android Malware Classification Services
    Rashed, Mohammed
    Suarez-Tangil, Guillermo
    SENSORS, 2021, 21 (16)
  • [14] An Empirical Study on Android Malware Characterization by Social Network Analysis
    Zhao, Haojun
    Wu, Yueming
    Zou, Deqing
    Jin, Hai
    IEEE TRANSACTIONS ON RELIABILITY, 2024, 73 (01) : 757 - 770
  • [15] Android malware detection through centrality analysis of applications network
    Mafakheri, Aso
    Sulaimany, Sadegh
    APPLIED SOFT COMPUTING, 2024, 165
  • [16] Attack Tree Based Android Malware Detection with Hybrid Analysis
    Zhao, Shuai
    Li, Xiaohong
    Xu, Guangquan
    Zhang, Lei
    Feng, Zhiyong
    2014 IEEE 13TH INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (TRUSTCOM), 2014, : 380 - 387
  • [17] Android Malware Detection Based on Static Analysis of Characteristic Tree
    Li, Qi
    Li, Xiaoyu
    2015 INTERNATIONAL CONFERENCE ON CYBER-ENABLED DISTRIBUTED COMPUTING AND KNOWLEDGE DISCOVERY, 2015, : 84 - 91
  • [18] MAMA: MANIFEST ANALYSIS FOR MALWARE DETECTION IN ANDROID
    Sanz, Borja
    Santos, Igor
    Laorden, Carlos
    Ugarte-Pedrero, Xabier
    Nieves, Javier
    Bringas, Pablo G.
    Alvarez Maranon, Gonzalo
    CYBERNETICS AND SYSTEMS, 2013, 44 (6-7) : 469 - 488
  • [19] Black box analysis of android malware detectors
    Nellaivadivelu, Guruswamy
    Di Troia, Fabio
    Stamp, Mark
    ARRAY, 2020, 6 (06)
  • [20] A3: Automatic Analysis of Android Malware
    Zhang, Luoshi
    Niu, Yan
    Wu, Xiao
    Wang, Zhaoguo
    Xue, Yibo
    PROCEEDINGS OF THE 1ST INTERNATIONAL WORKSHOP ON CLOUD COMPUTING AND INFORMATION SECURITY (CCIS 2013), 2013, 52 : 89 - 93
12345