Potential Component Leaks in Android Apps: An Investigation into a New Feature Set for Malware Detection

Li Li; Kevin Allix; Daoyuan Li; Alexandre Bartel; Tegawendé F. Bissyandé; Jacques Klein

doi:10.1109/QRS.2015.36

Potential Component Leaks in Android Apps: An Investigation into a New Feature Set for Malware Detection

Li Li
, Kevin Allix
, Daoyuan Li
, Alexandre Bartel
, Tegawendé F. Bissyandé
, Jacques Klein

University of Luxembourg
Technische Universität Darmstadt

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

24 引用（Scopus）

摘要

We discuss the capability of a new feature set for malware detection based on potential component leaks (PCLs). PCLs are defined as sensitive data-flows that involve Android inter-component communications. We show that PCLs are common in Android apps and that malicious applications indeed manipulate significantly more PCLs than benign apps. Then, we evaluate a machine learning-based approach relying on PCLs. Experimental validations show high performance for identifying malware, demonstrating that PCLs can be used for discriminating malicious apps from benign apps.

源语言	英语
主期刊名	Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015
出版商	Institute of Electrical and Electronics Engineers Inc.
页	195-200
页数	6
ISBN（电子版）	9781467379892
DOI	https://doi.org/10.1109/QRS.2015.36
出版状态	已出版 - 21 9月 2015
已对外发布	是
活动	IEEE International Conference on Software Quality, Reliability and Security, QRS 2015 - Vancouver, 加拿大期限: 3 8月 2015 → 5 8月 2015

出版系列

姓名	Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015

会议

会议	IEEE International Conference on Software Quality, Reliability and Security, QRS 2015
国家/地区	加拿大
市	Vancouver
时期	3/08/15 → 5/08/15

访问文件

10.1109/QRS.2015.36

其它文件与链接

链接到 Scopus 的出版物

引用此

Li, L., Allix, K., Li, D., Bartel, A., Bissyandé, T. F., & Klein, J. (2015). Potential Component Leaks in Android Apps: An Investigation into a New Feature Set for Malware Detection. 在 Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015 (页码 195-200). 文章 7272932 (Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/QRS.2015.36

Li, Li ; Allix, Kevin ; Li, Daoyuan 等. / Potential Component Leaks in Android Apps : An Investigation into a New Feature Set for Malware Detection. Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015. Institute of Electrical and Electronics Engineers Inc., 2015. 页码 195-200 (Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015).

@inproceedings{3182129b046d4fcb911e6bab1b762d07,

title = "Potential Component Leaks in Android Apps: An Investigation into a New Feature Set for Malware Detection",

abstract = "We discuss the capability of a new feature set for malware detection based on potential component leaks (PCLs). PCLs are defined as sensitive data-flows that involve Android inter-component communications. We show that PCLs are common in Android apps and that malicious applications indeed manipulate significantly more PCLs than benign apps. Then, we evaluate a machine learning-based approach relying on PCLs. Experimental validations show high performance for identifying malware, demonstrating that PCLs can be used for discriminating malicious apps from benign apps.",

author = "Li Li and Kevin Allix and Daoyuan Li and Alexandre Bartel and Bissyand{\'e}, \{Tegawend{\'e} F.\} and Jacques Klein",

note = "Publisher Copyright: {\textcopyright} 2015 IEEE.; IEEE International Conference on Software Quality, Reliability and Security, QRS 2015 ; Conference date: 03-08-2015 Through 05-08-2015",

year = "2015",

month = sep,

day = "21",

doi = "10.1109/QRS.2015.36",

language = "英语",

series = "Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "195--200",

booktitle = "Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015",

address = "美国",

}

Li, L, Allix, K, Li, D, Bartel, A, Bissyandé, TF & Klein, J 2015, Potential Component Leaks in Android Apps: An Investigation into a New Feature Set for Malware Detection. 在 Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015., 7272932, Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015, Institute of Electrical and Electronics Engineers Inc., 页码 195-200, IEEE International Conference on Software Quality, Reliability and Security, QRS 2015, Vancouver, 加拿大, 3/08/15. https://doi.org/10.1109/QRS.2015.36

Potential Component Leaks in Android Apps: An Investigation into a New Feature Set for Malware Detection. / Li, Li; Allix, Kevin; Li, Daoyuan 等.
Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015. Institute of Electrical and Electronics Engineers Inc., 2015. 页码 195-200 7272932 (Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015).

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

TY - GEN

T1 - Potential Component Leaks in Android Apps

T2 - IEEE International Conference on Software Quality, Reliability and Security, QRS 2015

AU - Li, Li

AU - Allix, Kevin

AU - Li, Daoyuan

AU - Bartel, Alexandre

AU - Bissyandé, Tegawendé F.

AU - Klein, Jacques

PY - 2015/9/21

Y1 - 2015/9/21

N2 - We discuss the capability of a new feature set for malware detection based on potential component leaks (PCLs). PCLs are defined as sensitive data-flows that involve Android inter-component communications. We show that PCLs are common in Android apps and that malicious applications indeed manipulate significantly more PCLs than benign apps. Then, we evaluate a machine learning-based approach relying on PCLs. Experimental validations show high performance for identifying malware, demonstrating that PCLs can be used for discriminating malicious apps from benign apps.

AB - We discuss the capability of a new feature set for malware detection based on potential component leaks (PCLs). PCLs are defined as sensitive data-flows that involve Android inter-component communications. We show that PCLs are common in Android apps and that malicious applications indeed manipulate significantly more PCLs than benign apps. Then, we evaluate a machine learning-based approach relying on PCLs. Experimental validations show high performance for identifying malware, demonstrating that PCLs can be used for discriminating malicious apps from benign apps.

UR - https://www.scopus.com/pages/publications/84962109836

U2 - 10.1109/QRS.2015.36

DO - 10.1109/QRS.2015.36

M3 - 会议稿件

AN - SCOPUS:84962109836

T3 - Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015

SP - 195

EP - 200

BT - Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 3 August 2015 through 5 August 2015

ER -

Li L, Allix K, Li D, Bartel A, Bissyandé TF, Klein J. Potential Component Leaks in Android Apps: An Investigation into a New Feature Set for Malware Detection. 在 Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015. Institute of Electrical and Electronics Engineers Inc. 2015. 页码 195-200. 7272932. (Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015). doi: 10.1109/QRS.2015.36

Potential Component Leaks in Android Apps: An Investigation into a New Feature Set for Malware Detection

摘要

出版系列

会议

访问文件

其它文件与链接

指纹

引用此