{"title":"基于网络流量的深度学习Android恶意软件检测与分类","authors":"M. Gohari, S. Hashemi, Lida Abdi","doi":"10.1109/ICWR51868.2021.9443025","DOIUrl":null,"url":null,"abstract":"Users of smartphones in the world has grown significantly, and attacks against these devices have increased. Many protection techniques for android malware detection have been proposed; however, most of them lack the early detection of malware. Hence, there is an intense need before to expand a mechanism to identify malicious programs before utilizing the data. Moreover, achieving high accuracy in detecting Android malware traffic is another critical problem. This research proposes a deep learning framework using network traffic features to detect Android malware. Commonly, machine learning algorithms need data preprocessing, but these preprocessing phases are time- consuming. Deep learning techniques remove the need for data preprocessing, and they perform well on malware detection problems. We extract local features from network flows by using the one-dimensional CNN and employ LSTM to detect the sequential relationship between the considerable features. We utilize a real-world dataset CICAndMal2017 with network traffic features to identify Android malware. Our model achieves the accuracy of 99.79, 98.90%, and 97.29%, respectively, in binary, category, and family classifications scenarios.","PeriodicalId":377597,"journal":{"name":"2021 7th International Conference on Web Research (ICWR)","volume":"45 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-05-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"12","resultStr":"{\"title\":\"Android Malware Detection and Classification Based on Network Traffic Using Deep Learning\",\"authors\":\"M. Gohari, S. Hashemi, Lida Abdi\",\"doi\":\"10.1109/ICWR51868.2021.9443025\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Users of smartphones in the world has grown significantly, and attacks against these devices have increased. Many protection techniques for android malware detection have been proposed; however, most of them lack the early detection of malware. Hence, there is an intense need before to expand a mechanism to identify malicious programs before utilizing the data. Moreover, achieving high accuracy in detecting Android malware traffic is another critical problem. This research proposes a deep learning framework using network traffic features to detect Android malware. Commonly, machine learning algorithms need data preprocessing, but these preprocessing phases are time- consuming. Deep learning techniques remove the need for data preprocessing, and they perform well on malware detection problems. We extract local features from network flows by using the one-dimensional CNN and employ LSTM to detect the sequential relationship between the considerable features. We utilize a real-world dataset CICAndMal2017 with network traffic features to identify Android malware. Our model achieves the accuracy of 99.79, 98.90%, and 97.29%, respectively, in binary, category, and family classifications scenarios.\",\"PeriodicalId\":377597,\"journal\":{\"name\":\"2021 7th International Conference on Web Research (ICWR)\",\"volume\":\"45 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-05-19\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"12\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 7th International Conference on Web Research (ICWR)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICWR51868.2021.9443025\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 7th International Conference on Web Research (ICWR)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICWR51868.2021.9443025","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Android Malware Detection and Classification Based on Network Traffic Using Deep Learning
Users of smartphones in the world has grown significantly, and attacks against these devices have increased. Many protection techniques for android malware detection have been proposed; however, most of them lack the early detection of malware. Hence, there is an intense need before to expand a mechanism to identify malicious programs before utilizing the data. Moreover, achieving high accuracy in detecting Android malware traffic is another critical problem. This research proposes a deep learning framework using network traffic features to detect Android malware. Commonly, machine learning algorithms need data preprocessing, but these preprocessing phases are time- consuming. Deep learning techniques remove the need for data preprocessing, and they perform well on malware detection problems. We extract local features from network flows by using the one-dimensional CNN and employ LSTM to detect the sequential relationship between the considerable features. We utilize a real-world dataset CICAndMal2017 with network traffic features to identify Android malware. Our model achieves the accuracy of 99.79, 98.90%, and 97.29%, respectively, in binary, category, and family classifications scenarios.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
