一种安卓系统非正常程序的检测方法实证研究
|
摘要
针对安卓系统非正常程序较多的现状,提出一种新的检测方法,结合了应用程序分类以及系统调用法,目的是提高安卓系统非正常程序检测的准确性。计算分类的数据采自谷歌商店,非正常程序样本采自安卓病毒共享库,通过系统调用值和阈值的计算对比,判断实验样本的正常性。实验结果表明:本文提出的方法能够准确检测出安卓系统中的非正常程序,有一定的推广价值。
Aiming at the current situation that there are many abnormal programs in Android system, a new detection method is proposed, which combines application classification and system call method. The purpose is to improve the accuracy of the detection of abnormal programs in Android system. The classified data were collected from Google Store, and the abnormal program samples were collected from Android virus shared library. The normality of the experimental samples was judged by comparing the system call values and thresholds. The experimental results show that the method proposed in this paper can accurately detect abnormal programs in Android system, and has certain popularization value.
Aiming at the current situation that there are many abnormal programs in Android system, a new detection method is proposed, which combines application classification and system call method. The purpose is to improve the accuracy of the detection of abnormal programs in Android system. The classified data were collected from Google Store, and the abnormal program samples were collected from Android virus shared library. The normality of the experimental samples was judged by comparing the system call values and thresholds. The experimental results show that the method proposed in this paper can accurately detect abnormal programs in Android system, and has certain popularization value.
引文
[1]Powers S.Android Candy:A Virtual Android[J].Journal of business logistics,2017(6):14-25
[2]Chanajitt R,Viriyasitavat W,Raymond Choo KK.Forensic analysis and security assessment of Android m-banking apps[J].The Australian journal of forensic sciences,2018,50(4):1-17
[3]徐林溪,郭帆.基于混合特征的恶意安卓程序检测方法[J].计算机工程与科学,2017,40(10):1837-1846
[4]Mente R,Bagadi A.Android Application Security[J].Advances in computational sciences and technology,2017,10(4):1207-1210
[5]Jan van Veldhuizen E.ESP8266 on the Elektor Android I/O Board Load new firmware yourself[J].Elektor,2018(1):100-104
[6]Kirubavathi G,Anitha R.Structural analysis and detection of android botnets using machine learning techniques[J].International Journal of Information Security,2018,17(2):153-167
[7]de la Puerta G,Borja JS.Using Dalvik opcodes for malware detection on android[J].Logic journal of the IGPL,2017,25(6):938-948
[8]Coelho R,Almeida L,Gousios G,et al.Exception handling bug hazards in Android[J].Empirical software engineering,2017,22(3):1264-1304
[9]Avu?lu E,Ba??ift?i F.A new approach to minimize the loss of life after natural hazards by using Android operating system[J].Natural Hazards,2018,90(2):1005-1016
[2]Chanajitt R,Viriyasitavat W,Raymond Choo KK.Forensic analysis and security assessment of Android m-banking apps[J].The Australian journal of forensic sciences,2018,50(4):1-17
[3]徐林溪,郭帆.基于混合特征的恶意安卓程序检测方法[J].计算机工程与科学,2017,40(10):1837-1846
[4]Mente R,Bagadi A.Android Application Security[J].Advances in computational sciences and technology,2017,10(4):1207-1210
[5]Jan van Veldhuizen E.ESP8266 on the Elektor Android I/O Board Load new firmware yourself[J].Elektor,2018(1):100-104
[6]Kirubavathi G,Anitha R.Structural analysis and detection of android botnets using machine learning techniques[J].International Journal of Information Security,2018,17(2):153-167
[7]de la Puerta G,Borja JS.Using Dalvik opcodes for malware detection on android[J].Logic journal of the IGPL,2017,25(6):938-948
[8]Coelho R,Almeida L,Gousios G,et al.Exception handling bug hazards in Android[J].Empirical software engineering,2017,22(3):1264-1304
[9]Avu?lu E,Ba??ift?i F.A new approach to minimize the loss of life after natural hazards by using Android operating system[J].Natural Hazards,2018,90(2):1005-1016
© 2004-2018 中国地质图书馆版权所有 京ICP备05064691号 京公网安备11010802017129号 地址:北京市海淀区学院路29号 邮编:100083 电话:办公室:(+86 10)66554848;文献借阅、咨询服务、科技查新:66554700 |