模块化移动IDS的体系结构

2014 28th International Conference on Advanced Information Networking and Applications Workshops Pub Date : 2014-05-13 DOI:10.1109/WAINA.2014.54

Alaa Salman, I. Elhajj, A. Chehab, A. Kayssi

{"title":"模块化移动IDS的体系结构","authors":"Alaa Salman, I. Elhajj, A. Chehab, A. Kayssi","doi":"10.1109/WAINA.2014.54","DOIUrl":null,"url":null,"abstract":"The popularity of mobile devices and the enormous number of third party mobile applications in the market have naturally lead to several vulnerabilities being identified and abused. This is coupled with the immaturity of intrusion detection system (IDS) technology targeting mobile devices. In this paper we propose a modular host-based IDS framework for mobile devices that uses behavior analysis to profile applications on the Android platform. Anomaly detection can then be used to categorize malicious behavior and alert users. The proposed system accommodates different detection algorithms, and is being tested at a major telecom operator in North America. This paper highlights the architecture, findings, and lessons learned.","PeriodicalId":424903,"journal":{"name":"2014 28th International Conference on Advanced Information Networking and Applications Workshops","volume":"45 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-05-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"DAIDS: An Architecture for Modular Mobile IDS\",\"authors\":\"Alaa Salman, I. Elhajj, A. Chehab, A. Kayssi\",\"doi\":\"10.1109/WAINA.2014.54\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The popularity of mobile devices and the enormous number of third party mobile applications in the market have naturally lead to several vulnerabilities being identified and abused. This is coupled with the immaturity of intrusion detection system (IDS) technology targeting mobile devices. In this paper we propose a modular host-based IDS framework for mobile devices that uses behavior analysis to profile applications on the Android platform. Anomaly detection can then be used to categorize malicious behavior and alert users. The proposed system accommodates different detection algorithms, and is being tested at a major telecom operator in North America. This paper highlights the architecture, findings, and lessons learned.\",\"PeriodicalId\":424903,\"journal\":{\"name\":\"2014 28th International Conference on Advanced Information Networking and Applications Workshops\",\"volume\":\"45 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-05-13\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2014 28th International Conference on Advanced Information Networking and Applications Workshops\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/WAINA.2014.54\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 28th International Conference on Advanced Information Networking and Applications Workshops","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WAINA.2014.54","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

摘要

移动设备的普及和市场上大量的第三方移动应用程序自然会导致一些漏洞被发现和滥用。这与针对移动设备的入侵检测系统(IDS)技术的不成熟相结合。在本文中，我们提出了一个模块化的基于主机的移动设备IDS框架，该框架使用行为分析来分析Android平台上的应用程序。然后可以使用异常检测对恶意行为进行分类并提醒用户。该系统适用于不同的检测算法，目前正在北美一家主要电信运营商进行测试。本文重点介绍了体系结构、发现和经验教训。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

DAIDS: An Architecture for Modular Mobile IDS

The popularity of mobile devices and the enormous number of third party mobile applications in the market have naturally lead to several vulnerabilities being identified and abused. This is coupled with the immaturity of intrusion detection system (IDS) technology targeting mobile devices. In this paper we propose a modular host-based IDS framework for mobile devices that uses behavior analysis to profile applications on the Android platform. Anomaly detection can then be used to categorize malicious behavior and alert users. The proposed system accommodates different detection algorithms, and is being tested at a major telecom operator in North America. This paper highlights the architecture, findings, and lessons learned.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2014 28th International Conference on Advanced Information Networking and Applications Workshops

自引率

0.00%

发文量