HinDroid: An Intelligent Android Malware Detection System
HinDroid: An Intelligent Android Malware Detection System Based on Structured Heterogeneous Information Network
Author:
Yanfang Ye, West Virginia University
Abstract:
With explosive growth of Android malware and due to the severity of its damages to smart phone users, the detection of Android malware has become an increasingly important topic in cyber security. The increasing sophistication of Android malware calls for new defensive techniques that are harder to evade, and are capable of protecting users against novel threats. In this paper, to detect Android malware, instead of using Application Programming Interface (API) calls only, we further analyze the different relationships between them and create higher-level semantics which require more efforts for attackers to evade the detection. We represent the Android applications (apps), related APIs, and their rich relationships as a structured heterogeneous information network (HIN). Then we use a meta-path based approach to characterize the semantic relatedness of apps and APIs. We use each meta-path to formulate a similarity measure over Android apps, and aggregate different similarities using multi-kernel learning. Then each meta-path is automatically weighted by the learning algorithm to make predictions. To the best of our knowledge, this is the rest work to use structured HIN for Android malware detection. Comprehensive experiments on real sample collections from Comodo Cloud Security Center are conducted to compare various malware detection approaches. Promising experimental results demonstrate that our developed system HinDroid system outperforms other alternative Android malware detection techniques. HinDroid has already been incorporated into the scanning tool of Comodo Mobile Security product.
More on http://www.kdd.org/kdd2017/
KDD2017 Conference is published on http://videolectures.net/
Видео HinDroid: An Intelligent Android Malware Detection System канала KDD2017 video
Author:
Yanfang Ye, West Virginia University
Abstract:
With explosive growth of Android malware and due to the severity of its damages to smart phone users, the detection of Android malware has become an increasingly important topic in cyber security. The increasing sophistication of Android malware calls for new defensive techniques that are harder to evade, and are capable of protecting users against novel threats. In this paper, to detect Android malware, instead of using Application Programming Interface (API) calls only, we further analyze the different relationships between them and create higher-level semantics which require more efforts for attackers to evade the detection. We represent the Android applications (apps), related APIs, and their rich relationships as a structured heterogeneous information network (HIN). Then we use a meta-path based approach to characterize the semantic relatedness of apps and APIs. We use each meta-path to formulate a similarity measure over Android apps, and aggregate different similarities using multi-kernel learning. Then each meta-path is automatically weighted by the learning algorithm to make predictions. To the best of our knowledge, this is the rest work to use structured HIN for Android malware detection. Comprehensive experiments on real sample collections from Comodo Cloud Security Center are conducted to compare various malware detection approaches. Promising experimental results demonstrate that our developed system HinDroid system outperforms other alternative Android malware detection techniques. HinDroid has already been incorporated into the scanning tool of Comodo Mobile Security product.
More on http://www.kdd.org/kdd2017/
KDD2017 Conference is published on http://videolectures.net/
Видео HinDroid: An Intelligent Android Malware Detection System канала KDD2017 video
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Designing AI at Scale to Power Everyday LifeEstimation of Recent Ancestral Origins of Individuals on a Large Scalestruc2vec: Learning Node Representations from Structural IdentityLearning to Generate Rock Descriptions from Multivariate Well Logs with Hierarchical AttentionA Local Algorithm for StructurePreserving Graph CutEmbedJoin: Efficient Edit Similarity Joins via EmbeddingsMulti-Aspect Streaming Tensor CompletionPlanning Bike Lanes based on SharingBikes' TrajectoriesTripoles: A New Class of Relationships in Time Series DataIndustrial Machine LearningOptimal Reserve Price for Online Ads Trading Based on Inventory IdentificationMulti-Aspect Streaming Tensor CompletionDispatch with Confidence: Integration of machine learningLearning certifiably optimal rule lists for categorical dataInterpretable Predictions of Tree-based Ensembles via Actionable Feature TweakingRevisiting power-law distributions in spectra of real world networksKDD Business LunchTraffic sensor health monitoring using spatiotemporal graphical modelingA Practical Algorithm for Solving the Incoherence Problem of Topic Models In Industrial ApplicationsDetecting Network Effects: Randomizing Over Randomized Experiments