Android恶意软件检测方法的研究与分析
|
摘要
Android恶意软件发展迅速,变种繁多,对Android恶意软件检测的研究与分析有着重要的实际意义。文章基于Android恶意软件的类型特点和检测技术,对国内外的检测方法进行介绍和分析。从恶意软件的发展角度,分析检测方法的技术选择;从检测技术分析检测方法的优缺点。重点分析总结了基于静态特征检测、基于动态特征检测和基于混合特征检测的几种检测方法。最后展望了Android恶意软件检测方法的发展趋势。
Android malware has developed rapidly and has many varieties. It has important practical significance for the research and analysis of Android malware detection. Based on the type characteristics and detection technology of Android malware, this paper introduces and analyzes the detection methods at home and abroad. From the perspective of the development of malware, analyzes the technical choice of detection methods, and analyzes the advantages and disadvantages of detection methods from detection technology.The analysis and summary of several detection methods based on static feature detection, dynamic feature detection and hybrid feature detection are summarized. Finally, the development trend of Android malware detection methods is forecasted.
Android malware has developed rapidly and has many varieties. It has important practical significance for the research and analysis of Android malware detection. Based on the type characteristics and detection technology of Android malware, this paper introduces and analyzes the detection methods at home and abroad. From the perspective of the development of malware, analyzes the technical choice of detection methods, and analyzes the advantages and disadvantages of detection methods from detection technology.The analysis and summary of several detection methods based on static feature detection, dynamic feature detection and hybrid feature detection are summarized. Finally, the development trend of Android malware detection methods is forecasted.
引文
[1]360烽火实验室.2018年Android恶意软件专题报告[EB/OL].(2019-02-18)[2019-03-01].http://blogs.360.cn/post/review_android_malware_of_2018.html.
[2]JIANG X X,ZHOU Y J.Dissecting Android malware:characterization and evolution[C].San Francisco:Proceeding of IEEESymposium on Security and Privacy,2012:95-109.
[3]卿斯汉.Android安全研究进展[J].软件学报,2016(1):45-71.
[4]秦中元,徐毓青,梁彪,等.一种Android平台恶意软件静态检测[J].东南大学学报(自然科学版),2013(6):1162-1167.
[5]陈红闵,胡江村.安卓恶意软件的静态检测方法[J].计算机系统应用,2018(7):26-33.
[6]卜义云.基于机器学习的Android恶意软件静态检测系统的设计与实现[D].成都:电子科技大学,2016.
[7]许艳萍,伍淳华,侯美佳,等.基于改进朴素贝叶斯的Android恶意应用检测技术[J].北京邮电大学学报,2016(2):43-47.
[8]FEIZOLLAH A,ANUAR N B,SALLEH R,et al.A review on feature selection in mobile malware detection[J].Digital Investigation,2015(13):22-37.
[9]谢丽霞,李爽.基于Bagging-SVM的Android恶意软件检测模型[J].计算机应用,2018(3):818-823,878.
[10]陈苏婷,王军华,张艳艳.基于随机森林的Android恶意软件检测方法[J].计算机工程与设计,2017(9):2374-2378.
[11]李俊.Android平台下基于流量监测的安全软件设计与实现[D].成都:西南交通大学,2014.
[12]王闪闪.基于网络流量的Android恶意应用识别方法研究[D].济南:济南大学,2018.
[13]张吉.Android平台下恶意软件动态检测技术研究[D].天津:天津大学,2012.
[14]张超钦,胡光武,王振龙,等.一种基于支持向量机的安卓恶意软件新型检测方法[J].计算机应用与软件,2018(10):292-298.
[15]冯擘.Android平台恶意软件检测系统的设计与实现[D].北京:北京交通大学,2018.
[2]JIANG X X,ZHOU Y J.Dissecting Android malware:characterization and evolution[C].San Francisco:Proceeding of IEEESymposium on Security and Privacy,2012:95-109.
[3]卿斯汉.Android安全研究进展[J].软件学报,2016(1):45-71.
[4]秦中元,徐毓青,梁彪,等.一种Android平台恶意软件静态检测[J].东南大学学报(自然科学版),2013(6):1162-1167.
[5]陈红闵,胡江村.安卓恶意软件的静态检测方法[J].计算机系统应用,2018(7):26-33.
[6]卜义云.基于机器学习的Android恶意软件静态检测系统的设计与实现[D].成都:电子科技大学,2016.
[7]许艳萍,伍淳华,侯美佳,等.基于改进朴素贝叶斯的Android恶意应用检测技术[J].北京邮电大学学报,2016(2):43-47.
[8]FEIZOLLAH A,ANUAR N B,SALLEH R,et al.A review on feature selection in mobile malware detection[J].Digital Investigation,2015(13):22-37.
[9]谢丽霞,李爽.基于Bagging-SVM的Android恶意软件检测模型[J].计算机应用,2018(3):818-823,878.
[10]陈苏婷,王军华,张艳艳.基于随机森林的Android恶意软件检测方法[J].计算机工程与设计,2017(9):2374-2378.
[11]李俊.Android平台下基于流量监测的安全软件设计与实现[D].成都:西南交通大学,2014.
[12]王闪闪.基于网络流量的Android恶意应用识别方法研究[D].济南:济南大学,2018.
[13]张吉.Android平台下恶意软件动态检测技术研究[D].天津:天津大学,2012.
[14]张超钦,胡光武,王振龙,等.一种基于支持向量机的安卓恶意软件新型检测方法[J].计算机应用与软件,2018(10):292-298.
[15]冯擘.Android平台恶意软件检测系统的设计与实现[D].北京:北京交通大学,2018.
© 2004-2018 中国地质图书馆版权所有 京ICP备05064691号 京公网安备11010802017129号 地址:北京市海淀区学院路29号 邮编:100083 电话:办公室:(+86 10)66554848;文献借阅、咨询服务、科技查新:66554700 |