Profiling user-trigger dependence for Android malware detection

Computers and Security

Volumn 49, Issue , 2015, Pages 255-273

  Elish, Karim O ^a   Shu, Xiaokui ^a   Yao, Danfeng ^a   Ryder, Barbara G ^a   Jiang, Xuxian ^b  

^a Virginia Polytechnic Institute and State University   (United States)

^b North Carolina State University   (United States)

Author keywords

Android malware; Malware detection; Static program analysis; User intention; User trigger dependence

Indexed keywords

APPLICATION PROGRAMS; COMMERCE; COMPUTER CRIME; MALWARE; VIRUSES;

ANDROID MALWARE; MALWARE DETECTION; STATIC PROGRAM ANALYSIS; USER INTENTION; USER-TRIGGER DEPENDENCE;

ANDROID (OPERATING SYSTEM);

EID: 84923250812     PISSN: 01674048     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.cose.2014.11.001     Document Type: Article

References (36)

1. Yousra Aafer, Wenliang Du, and Heng Yin DroidAPIMiner: mining API-level features for robust malware detection in Android Proc. of 9th International Security and Privacy in Communication Networks (SecureComm) 2013 86 103
2. Brandon Amos, Hamilton A. Turner, and Jules White Applying machine learning classifiers to dynamic Android malware detection at scale Proc. of 9th the International Wireless Communications and Mobile Computing Conference, IWCMC 2013 IEEE 1666 1671
3. Daniel Arp, Michael Spreitzenbarth, Malte Hubner, Hugo Gascon, and Konrad Rieck Drebin: efficient and explainable detection of Android malware in your pocket Proc. of 17th Network and Distributed System Security Symposium (NDSS) 2014
4. Iker Burguera, Urko Zurutuza, and Simin Nadjm-Tehrani Crowdroid: behavior-based malware detection system for Android Proc. of the 1st ACM workshop on Security and privacy in smartphones and mobile devices (SPSM) 2011 ACM 15 26
5. Kevin Zhijie Chen, Noah M. Johnson, Vijay D' Silva, Shuaifu Dai, Kyle MacNamara, and Tom Magrino Contextual policy enforcement in Android applications with permission event graphs 20th Annual Network and Distributed System Security Symposium (NDSS) 2013 The Internet Society
6. Erika Chin, Adrienne Porter Felt, Kate Greenwood, and David Wagner Analyzing inter-application communication in Android Proc. of the 9th Int'l Conference on Mobile Systems, Applications, and Services 2011 ACM 239 252
7. F. Cohen Computer viruses theory and experiments Comput Secur 6 1987 22 35
8. Jonathan Crussell, Clint Gibler, and Hao Chen Attack of the clones: detecting cloned applications on Android markets Proc. of the 17th European Symposium on Research in Computer Security (ESORICS) Vol. 7459 of Lecture Notes in Computer Science 2012 Springer 37 54
9. Lucas Davi, Alexandra Dmitrienko, Ahmad-Reza Sadeghi, and Marcel Winandy Privilege escalation attacks on Android Proc. of the 13th International Conference on Information Security (ISC) 2010 Springer-Verlag 346 360
10. Manuel Egele, Christopher Kruegel, Engin Kirda, and Giovanni Vigna PiOS: detecting privacy leaks in iOS applications Proc. of the Network and Distributed System Security Symposium (NDSS) 2011 The Internet Society
11. Karim O. Elish, Danfeng Yao, and Barbara G. Ryder User-centric dependence analysis for identifying malicious mobile apps Proc. of the IEEE Mobile Security Technologies (MoST) workshop, in conjunction with the IEEE Symposium on Security and Privacy 2012
12. William Enck, Peter Gilbert, Byung gon Chun, Landon P. Cox, Jaeyeon Jung, and Patrick McDaniel TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones Proc. of the USENIX Symposium on Operating Systems Design and Implementation 2010 USENIX Association 393 407
13. William Enck, Damien Octeau, Patrick McDaniel, and Swarat Chaudhuri A study of Android application security Proc. of the 20th USENIX conference on Security 2011 USENIX Association
14. Forti-guard Fortinet FortiGuard labs reports August 2013 https://www.fortinet.com
15. Adam P. Fuchs, Avik Chaudhuri, and Jeffrey S. Foster SCanDroid: automated security certification of Android applications Technical report 2009 University of Maryland
16. Clint Gibler, Jon Crussell, Jeremy Erickson, and Hao Chen AndroidLeaks: automatically detecting potential privacy leaks in Android applications on a large scale Proc. of the 5th International Conference on Trust & Trustworthy Computing (TRUST) Vol. 7344 of Lecture Notes in Computer Science 2012 Springer 291 307
17. Michael C. Grace, Wu Zhou, Xuxian Jiang, and Ahmad-Reza Sadeghi Unsafe exposure analysis of mobile in-app advertisements Proc. of the 5th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WISEC) 2012 ACM 101 112
18. Michael C. Grace, Yajin Zhou, Qiang Zhang, Shihong Zou, and Xuxian Jiang RiskRanker: scalable and accurate zero-day Android malware detection Proc. of the 10th International Conference on Mobile Systems, Applications, and Services (MobiSys) 2012 ACM 281 294
19. Susan Horwitz, Thomas Reps, and David Binkley Interprocedural slicing using dependence graphs ACM Trans Program Lang Syst 12 1990 26 60
20. Jinyung Kim, Yongho Yoon, Kwangkeun Yi, and Junbum Shin SCANDAL: static analyzer for detecting privacy leaks in android applications Proc. of the IEEE Mobile Security Technologies (MoST) workshop, in conjunction with the IEEE Symposium on Security and Privacy 2012
21. Lei Liu, Guanhua Yan, Xinwen Zhang, and Songqing Chen VirusMeter: preventing your cellphone from spies Proc. of the 12th International Symposium on Recent Advances in Intrusion Detection 2009 Springer 244 264
22. Long Lu, Zhichun Li, Zhenyu Wu, Wenke Lee, and Guofei Jiang CHEX: statically vetting Android apps for component hijacking vulnerabilities Proc. of the ACM Conference on Computer and Communications Security (CCS) 2012 ACM 229 240
23. James Newsome, and Dawn Xiaodong Song Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software Proc. of the Network and Distributed System Security Symposium 2005 The Internet Society
24. Damien Octeau, Somesh Jha, and Patrick McDaniel Retargeting Android applications to Java bytecode Proc. of the 20th ACM SIGSOFT Symposium on the Foundations of Software Engineering (FSE) 2012 ACM
25. Hao Peng, Chris Gates, Bhaskar Sarma, Ninghui Li, Yuan Qi, and Rahul Potharaju Using probabilistic generative models for ranking risks of Android apps Proc. of the ACM conference on Computer and Communications Security (CCS) 2012 ACM 241 252
26. Franziska Roesner, Tadayoshi Kohno, Alexander Moshchuk, Bryan Parno, Helen J. Wang, and Crispin Cowan User-driven access control: rethinking permission granting in modern operating systems Proc. of the IEEE Symposium on Security and Privacy 2012 224 238
27. B. Sanz, I. Santos, C. Laorden, X. Ugarte-Pedrero, P.G. Bringas, and G. Alvarez Puma: permission usage to detect malware in Android Proc. of International Joint Conference CISIS'12-ICEUTE'12-SOCO'12 Special Sessions 2012
28. Asaf Shabtai, Uri Kanonov, Yuval Elovici, Chanan Glezer, and Yael Weiss Andromaly: a behavioral malware detection framework for Android devices J Intell Inf Syst 38 1 2012 161 190
29. Soot: a Java optimization framework. http://www.sable.mcgill.ca/soot/.
30. Pang-Ning Tan, Michael Steinbach, and Vipin Kumar Introduction to data mining 2006 Addison-Wesley
31. Britton Wolfe, Karim Elish, and Danfeng Yao Comprehensive behavior profiling for proactive Android malware detection Proc. of 17th International Information Security Conference (ISC) 2014
32. Z. Yang, M. Yang, Y. Zhang, G. Gu, P. Ning, and X.S. Wang AppIntent: analyzing sensitive data transmission in Android for privacy leakage detection Proc. of the ACM Conference on Computer and Communications Security (CCS) 2013 ACM
33. Heng Yin, Dawn Song, Manuel Egele, Christopher Kruegel, and Engin Kirda Panorama: capturing system-wide information flow for malware detection and analysis Proc. of the ACM Conference on Computer and Communications Security (CCS) 2007 ACM 116 127
34. Mu Zhang, Yue Duan, Heng Yin, and Zhiruo Zhao Semantics-aware Android malware classification using weighted contextual API dependency graphs Proceedings of the 21st ACM Conference on Computer and Communications Security (CCS'14) November 2014
35. Yajin Zhou, and Xuxian Jiang Dissecting Android malware: characterization and evolution Proc. of the IEEE Symposium on Security and Privacy 2012 95 109
36. Yajin Zhou, Zhi Wang, Wu Zhou, and Xuxian Jiang Hey, you, get off of my market: detecting malicious apps in official and alternative Android markets Proc. of the 19th Network and Distributed System Security Symposium (NDSS) 2012