MalDuoNet:一个检测Android恶意软件的双重网络框架

2021 RIVF International Conference on Computing and Communication Technologies (RIVF) Pub Date : 2021-08-19 DOI:10.1109/RIVF51545.2021.9642094

Aayasha Palikhe, Longzhuang Li, Feng Tian, Dulal C. Kar, Ning Zhang, Wen Zhang

{"title":"MalDuoNet:一个检测Android恶意软件的双重网络框架","authors":"Aayasha Palikhe, Longzhuang Li, Feng Tian, Dulal C. Kar, Ning Zhang, Wen Zhang","doi":"10.1109/RIVF51545.2021.9642094","DOIUrl":null,"url":null,"abstract":"Today mobile phones provide a wide range of applications that make our daily life easy. With popularity, smartphones have become a target for cybercrime where malicious apps are developed to acquire sensitive information or corrupt data. To mitigate this issue and to improve the security in mobile devices, different techniques have been used. These techniques can be broadly classified as static, dynamic and hybrid approaches. In this paper, a static-based model MalDuoNet is proposed to detect Android malwares, which uses a DualNet framework to analyze the features from the API calls. In the MalDuoNet model, one sub-network is focused to learn the features relevant to malicious behavior and the other sub-network is focused to learn the features in general. Thus it enables the model to learn complementary features which in turn helps get richer features for analysis. Then the features from the two sub-networks are combined in the final fused classifier for the final classification. In addition, each of the feature extractors has a separate classifier so that each sub-network can optimize its performance separately. The experimental results demonstrate that the MalDuoNet model outperforms the two baseline models with single network.","PeriodicalId":6860,"journal":{"name":"2021 RIVF International Conference on Computing and Communication Technologies (RIVF)","volume":"80 1","pages":"1-6"},"PeriodicalIF":0.0000,"publicationDate":"2021-08-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"MalDuoNet: A DualNet Framework to Detect Android Malware\",\"authors\":\"Aayasha Palikhe, Longzhuang Li, Feng Tian, Dulal C. Kar, Ning Zhang, Wen Zhang\",\"doi\":\"10.1109/RIVF51545.2021.9642094\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Today mobile phones provide a wide range of applications that make our daily life easy. With popularity, smartphones have become a target for cybercrime where malicious apps are developed to acquire sensitive information or corrupt data. To mitigate this issue and to improve the security in mobile devices, different techniques have been used. These techniques can be broadly classified as static, dynamic and hybrid approaches. In this paper, a static-based model MalDuoNet is proposed to detect Android malwares, which uses a DualNet framework to analyze the features from the API calls. In the MalDuoNet model, one sub-network is focused to learn the features relevant to malicious behavior and the other sub-network is focused to learn the features in general. Thus it enables the model to learn complementary features which in turn helps get richer features for analysis. Then the features from the two sub-networks are combined in the final fused classifier for the final classification. In addition, each of the feature extractors has a separate classifier so that each sub-network can optimize its performance separately. The experimental results demonstrate that the MalDuoNet model outperforms the two baseline models with single network.\",\"PeriodicalId\":6860,\"journal\":{\"name\":\"2021 RIVF International Conference on Computing and Communication Technologies (RIVF)\",\"volume\":\"80 1\",\"pages\":\"1-6\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-08-19\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 RIVF International Conference on Computing and Communication Technologies (RIVF)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/RIVF51545.2021.9642094\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 RIVF International Conference on Computing and Communication Technologies (RIVF)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/RIVF51545.2021.9642094","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

今天，手机提供了广泛的应用程序，使我们的日常生活变得轻松。随着智能手机的普及，它已经成为网络犯罪的目标，恶意应用程序被开发出来，以获取敏感信息或损坏数据。为了缓解这个问题并提高移动设备的安全性，已经使用了不同的技术。这些技术大致可分为静态、动态和混合方法。本文提出了一种基于静态的Android恶意软件检测模型MalDuoNet，该模型使用DualNet框架从API调用中分析特征。在MalDuoNet模型中，一个子网络集中学习与恶意行为相关的特征，另一个子网络集中学习一般特征。因此，它使模型能够学习互补特征，从而有助于获得更丰富的特征以供分析。然后将两个子网络的特征结合到最终的融合分类器中进行最终分类。此外，每个特征提取器都有一个单独的分类器，以便每个子网络可以单独优化其性能。实验结果表明，MalDuoNet模型优于单网络的两个基线模型。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

MalDuoNet: A DualNet Framework to Detect Android Malware

Today mobile phones provide a wide range of applications that make our daily life easy. With popularity, smartphones have become a target for cybercrime where malicious apps are developed to acquire sensitive information or corrupt data. To mitigate this issue and to improve the security in mobile devices, different techniques have been used. These techniques can be broadly classified as static, dynamic and hybrid approaches. In this paper, a static-based model MalDuoNet is proposed to detect Android malwares, which uses a DualNet framework to analyze the features from the API calls. In the MalDuoNet model, one sub-network is focused to learn the features relevant to malicious behavior and the other sub-network is focused to learn the features in general. Thus it enables the model to learn complementary features which in turn helps get richer features for analysis. Then the features from the two sub-networks are combined in the final fused classifier for the final classification. In addition, each of the feature extractors has a separate classifier so that each sub-network can optimize its performance separately. The experimental results demonstrate that the MalDuoNet model outperforms the two baseline models with single network.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2021 RIVF International Conference on Computing and Communication Technologies (RIVF)

自引率

0.00%

发文量