Detecting software vulnerabilities in android using static analysis

2014 IEEE International Conference on Advanced Communications, Control and Computing Technologies Pub Date : 2014-05-08 DOI:10.1109/ICACCCT.2014.7019227

R. Dhaya, M. Poongodi

{"title":"Detecting software vulnerabilities in android using static analysis","authors":"R. Dhaya, M. Poongodi","doi":"10.1109/ICACCCT.2014.7019227","DOIUrl":null,"url":null,"abstract":"Now a day's mobile devices like Smartphone, tablets and Personal Digital Assistants etc. were playing most essential part in our daily lives. A high-end mobile device performs the same functionality as computers. Android based smart phone has become more vulnerable, because of an open source operating system. Anyone can develop a new application and post it into android market. These types of applications were not verified by authorized company. So it may include malevolent applications it may be virus, spyware, worms, etc. which can cause system failure, wasting memory resources, corrupting data, stealing personal information and also increases the maintenance cost. Due to these reasons, the mobile phone security or mobile security is very essential one in mobile computing. In the existing system is not able to detect new viruses, due to the limitation of updated signatures. The proposed system aims to motivate static code analysis based malware detection using search based machine learning algorithm which is called N-gram analysis and it detects the unnoticed malicious characteristics or vulnerabilities in the mobile applications.","PeriodicalId":239918,"journal":{"name":"2014 IEEE International Conference on Advanced Communications, Control and Computing Technologies","volume":"56 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-05-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"29","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 IEEE International Conference on Advanced Communications, Control and Computing Technologies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICACCCT.2014.7019227","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 29

Abstract

Now a day's mobile devices like Smartphone, tablets and Personal Digital Assistants etc. were playing most essential part in our daily lives. A high-end mobile device performs the same functionality as computers. Android based smart phone has become more vulnerable, because of an open source operating system. Anyone can develop a new application and post it into android market. These types of applications were not verified by authorized company. So it may include malevolent applications it may be virus, spyware, worms, etc. which can cause system failure, wasting memory resources, corrupting data, stealing personal information and also increases the maintenance cost. Due to these reasons, the mobile phone security or mobile security is very essential one in mobile computing. In the existing system is not able to detect new viruses, due to the limitation of updated signatures. The proposed system aims to motivate static code analysis based malware detection using search based machine learning algorithm which is called N-gram analysis and it detects the unnoticed malicious characteristics or vulnerabilities in the mobile applications.

查看原文本刊更多论文

使用静态分析检测android中的软件漏洞

现在，像智能手机、平板电脑和个人数字助理等移动设备在我们的日常生活中扮演着最重要的角色。高端移动设备的功能与计算机相同。基于Android的智能手机变得更加脆弱，因为它是一个开源的操作系统。任何人都可以开发新的应用程序并将其发布到android市场。这些类型的申请未经授权公司核实。因此，它可能包括恶意应用程序，它可能是病毒，间谍软件，蠕虫等，这可能会导致系统故障，浪费内存资源，破坏数据，窃取个人信息，也增加了维护成本。由于这些原因，手机安全或移动安全是移动计算中非常重要的一个问题。在现有的系统中，由于更新签名的限制，无法检测到新的病毒。该系统旨在利用基于搜索的机器学习算法(称为N-gram分析)激发基于静态代码分析的恶意软件检测，并检测移动应用程序中未被注意的恶意特征或漏洞。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2014 IEEE International Conference on Advanced Communications, Control and Computing Technologies

自引率

0.00%

发文量