Patent
Android malicious code detection method based on class analysis
Tao Jing,Hu Wenjun,Zhou Wenyu,Zhao Shuang,Ma Xiaobo +4 more
- 25 Dec 2013
8
TL;DR: In this paper, the authors proposed an Android malicious code detection method based on class analysis, which comprises the following steps: extracting permission information from an Android program to be detected by adopting a classifying algorithm based on permission information; inputting the permission information into a classification model for classifying; comparing a classification result with a claimed class; judging the malicious threat degree of the Android program according to a judging rule.
read more
Abstract: The invention provides an Android malicious code detection method based on class analysis. The method comprises the following steps: extracting permission information from an Android program to be detected by adopting a classifying method based on permission information; inputting the permission information into a classifying model for classifying; comparing a classification result with a claimed class; judging the malicious threat degree of the Android program to be detected according to a judging rule. The Android malicious code detection method is suitable for automatic malicious code detection of mass Android applications, and has the characteristics of easiness, high efficiency and high speed.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Patent
Method and device for detecting Android malicious software in batch
Xiao Xi,Xianni Xiao,Jiang Yong,Fu Peng,Li Qing,Xia Shutao +5 more
- 12 Aug 2015
TL;DR: In this article, a method for detecting Android malicious software in batch, comprising the following steps: A, respectively extracting and calculating a system permissions characteristic, a process control flow chart characteristic of an application program and frequency vectors of a system call characteristic, and combining and splicing the frequency vectors to form comprehensive characteristic vectors; B, using sorting algorithms in the data mining to classify the comprehensive characteristic vector; C, calculating contribution values of electric quantity record to malicious software detection and intent record to malware detection; D, carrying out weighting calculation to the numerical value of classification result and contribution
9
Patent
Malicious application program recognition method and device according to application program declaration characteristics
Cheng Wenkun
- 25 Mar 2015
TL;DR: In this paper, a malicious application program recognition method and device according to application program declaration characteristics and related to the technical field of computers is presented, which includes acquiring listing files of an application program installation package, counting first listing file characteristics recorded in the listing files, and determining whether the application program is a malicious one or not according to the first listing files characteristics of the application programs.
7
Patent
Lightweight-class Android malicious software fast judging method
Yu Liu,Zhang Yichi,Li Haibin,Li Shenglong,Wang Yingxue,Cheng Fang +5 more
- 29 Jul 2015
TL;DR: In this paper, a lightweight-class Android malicious software fast judging method is proposed, where software samples are collected from different sources, and two software bases including a malicious software base and a benign software base are respectively formed; configuration files of Android program installing files in the two sample bases are respectively obtained; the configuration files are decoded, permission vectors are extracted, and permission sets of each program are obtained; each sample base is subjected to feature extraction to obtain 46 permissions, each sample generates one corresponding 46-dimension binary feature vector; 10 feature vectors with the highest relevancy
7
Patent
API recommendation method and API recommendation device
Yu Kuifei
- 19 Nov 2014
TL;DR: In this article, the authors present an API recommendation method based on the security risk cluster information of multiple authorities and the used authority, which comprises the steps of acquiring security risk clusters information and determining one authority, having been used by an application program, among the multiple authorities; determining one or more authorities, related to the used authorities, among multiple authorities according to the security risks and used authority; and determining the APIs according to authorities determined in the last step, and then the developers can quickly and accurately select the APIs with the appropriate security risks.
7
Patent
Risk determining method and device for application programs
Zhu Hengshu,Yu Kuifei +1 more
- 08 Oct 2014
TL;DR: In this article, a risk determining method and device for application programs is presented, which includes the steps that at least one application relation between at least 1 application program and multiple authorities is determined, the weight of each application relation in all the application relations is determined; the application safety risk value of each program in all application programs was determined according to weight of the corresponding application relation; and safety grading was conducted on the application programs according to the application's safety risk values of all the program relations.
6