abstract

Analysis of mobile malware based on user awareness

Authors:

Youngho Kim,

Bill Stackpole,

Tae OhAuthors Info & Claims

RIIT '14: Proceedings of the 3rd annual conference on Research in information technology

Pages 51 - 52

https://doi.org/10.1145/2656434.2656448

Published: 13 October 2014 Publication History

Get Access

Abstract

The number of mobile device malware has been increasing drastically last several years. When attempting to detect malware within a device, it is difficult to draw a clear line between malicious and normal activities. Even useful applications naturally result in data transfer from a mobile device to a remote server and a malware detection mechanism based solely on information flow might consider this as data leakage. Therefore one should also consider the surrounding context of an application to make a better decision on whether it is malicious or not. In this current research, a dynamic analysis approach is taken which monitors and measures the runtime behavior and logs from the mobile application. In particular, a concept of user awareness (UA) is proposed which represents a degree of intent with which an application tries to hide its activities from a user. This extended analysis measurement, combined with dataflow-based analysis, will help make a more accurate decision with less false positives.

References

[1]

W. Enck, P. Gilbert, B.-G. Chun, L. P. Cox, J. Jung, P. McDaniel, and A. N. Sheth. 2010. TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones. USENIX OSDI, 1--6.

Digital Library

Google Scholar

[2]

C. Xiang, F. Binxing, Y. Lihua, L. Xiaoyi, and Z. Tianning. 2011. Andbot: Towards Advanced Mobile Botnets. USENIX Conference on Large-scale Exploits and Emergent Threats.

Digital Library

Google Scholar

Index Terms

Analysis of mobile malware based on user awareness
1. Security and privacy
  1. Cryptography
    1. Cryptanalysis and other attacks
  2. Intrusion/anomaly detection and malware mitigation
2. Social and professional topics
  1. Computing / technology policy
    1. Computer crime

Recommendations

A Survey On Automated Dynamic Malware Analysis Evasion and Counter-Evasion: PC, Mobile, and Web
ROOTS: Proceedings of the 1st Reversing and Offensive-oriented Trends Symposium

Automated dynamic malware analysis systems are important in combating the proliferation of modern malware. Unfortunately, malware can often easily detect and evade these systems. Competition between malware authors and analysis system developers has ...
The Detection of 8 Type Malware botnet using Hybrid Malware Analysis in Executable File Windows Operating Systems
ICEC '15: Proceedings of the 17th International Conference on Electronic Commerce 2015

Nowadays a lot of botnet are being used for the purpose of cybercrime such as distributed denial of services (DDos) or information stealing. Botnet is a collection of computers connected through Internet that has been taken over by an attacker using ...
Malware Detection by Static Checking and Dynamic Analysis of Executables

The advanced malware continue to be a challenge in digital world that signature-based detection techniques fail to conquer. The malware use many anti-detection techniques to mutate. Thus no virus scanner can claim complete malware detection even for ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

RIIT '14: Proceedings of the 3rd annual conference on Research in information technology

October 2014

98 pages

ISBN:9781450327114

DOI:10.1145/2656434

General Chairs:
Becky Rutherfoord
Southern Polytechnic State University, USA
,
Lei Li
Southern Polytechnic State University, USA
,
Susan Van de Ven
Southern Polytechnic State University, USA
,
Program Chairs:
Amber Settle
DePaul University, USA
,
Terry Steinbach
DePaul University, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 13 October 2014

Check for updates

Author Tags

Qualifiers

Abstract

Funding Sources

Ministry of Science, ICT and Future Planning

Conference

SIGITE/RIIT'14

Sponsor:

SIGITE

SIGITE/RIIT'14: SIGITE/RIIT 2014

October 15 - 18, 2014

Georgia, Atlanta, USA

Acceptance Rates

RIIT '14 Paper Acceptance Rate 14 of 39 submissions, 36%;

Overall Acceptance Rate 51 of 116 submissions, 44%

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

0
Total Citations
176
Total Downloads

Downloads (Last 12 months)1
Downloads (Last 6 weeks)0

Reflects downloads up to 20 Nov 2024

Other Metrics

View Author Metrics

Citations

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Index Terms

Recommendations

A Survey On Automated Dynamic Malware Analysis Evasion and Counter-Evasion: PC, Mobile, and Web

The Detection of 8 Type Malware botnet using Hybrid Malware Analysis in Executable File Windows Operating Systems

Malware Detection by Static Checking and Dynamic Analysis of Executables