A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2018; you can also visit the original URL.
The file type is
Android systems are widely used in mobile & wireless distributed systems. In the near future, Android is believed to dominate the mobile distributed environment. However, with the popularity of Android-based smartphones/tablets comes the rampancy of Android-based malware. In this paper, we propose a novel topological signature of Android apps based on the function call graphs (FCGs) extracted from their Android App PacKages (APKs). Specifically, by leveraging recent advances in graphletdoi:10.1109/cns.2016.7860468 dblp:conf/cns/PengGSSLH16 fatcat:2n6bbodikrcmrengu6jaflbuvu
more »... , the proposed method fully captures the invocatorinvocatee relationship at local neighborhoods in an FCG without exponentially inflating the state space. Using real benign app and malware samples, we demonstrate that our method, ACTS (App topologiCal signature through graphleT Sampling), can detect malware and identify malware families robustly and efficiently. More importantly, we demonstrate that, without augmenting the FCG with any semantic features such as bytecode-based vertex typing, local topological information captured by ACTS alone can achieve a high malware detection accuracy. Since ACTS only uses structural features, which are orthogonal to semantic features, it is expected that combining them would give a greater improvement in malware detection accuracy than combining nonorthogonal semantic features.
• Peng, Wei, Tianchong Gao, Devkishen Sisodia, Tanay Kumar Saha, Feng Li, and Mohammad Al Hasan, "ACTS: Extracting android App topological signa- ture through graphlet sampling." ... • Gao, Tianchong, Wei Peng, Devkishen Sisodia, Tanay Kumar Saha, Feng Li, and Mohammad Al Hasan, "Android Malware Detection via Graphlet Sam- pling," IEEE Transactions on Mobile Computing, vol. 1 ...doi:10.25394/pgs.9901862.v1 fatcat:wmh7djcsqvb2rdkwc7s2zva65y