Da-peng Chen, Hongmei Zhang, Xiangli Zhang, Demin Wang
{"title":"基于权限与系统调用集成的本体技术的Android恶意应用检测","authors":"Da-peng Chen, Hongmei Zhang, Xiangli Zhang, Demin Wang","doi":"10.1109/IIKI.2016.56","DOIUrl":null,"url":null,"abstract":"In this paper, for sharing the security knowledge of smart phone applications and detecting the malicious applications, one new method was put forward based on ontology technology which considered permissions and system calls information with JESS inference engine. In order to get final feature information list and define SWRL rules, this paper extracted and analyzed permissions and system calls information which were significant and representative ones. The constructed application ontology referred to application domain knowledge including permissions and system calls etc. so that explicit and tacit knowledge could be shared. By selecting defined SWRL rules and running JESS inference engine, this paper demonstrated that our detection method could effectively classify malware and benign. Experimental results showed that the accuracy reached 95.89%. Moreover, through a comparative analysis, it could be seen that the application security detection based on ontology method outperformed two existing Android malware detection schemes for combining two characteristic information-permissions and system calls.","PeriodicalId":371106,"journal":{"name":"2016 International Conference on Identification, Information and Knowledge in the Internet of Things (IIKI)","volume":"6 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Android Malicious Application Detection Based on Ontology Technology Integrated with Permissions and System Calls\",\"authors\":\"Da-peng Chen, Hongmei Zhang, Xiangli Zhang, Demin Wang\",\"doi\":\"10.1109/IIKI.2016.56\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper, for sharing the security knowledge of smart phone applications and detecting the malicious applications, one new method was put forward based on ontology technology which considered permissions and system calls information with JESS inference engine. In order to get final feature information list and define SWRL rules, this paper extracted and analyzed permissions and system calls information which were significant and representative ones. The constructed application ontology referred to application domain knowledge including permissions and system calls etc. so that explicit and tacit knowledge could be shared. By selecting defined SWRL rules and running JESS inference engine, this paper demonstrated that our detection method could effectively classify malware and benign. Experimental results showed that the accuracy reached 95.89%. Moreover, through a comparative analysis, it could be seen that the application security detection based on ontology method outperformed two existing Android malware detection schemes for combining two characteristic information-permissions and system calls.\",\"PeriodicalId\":371106,\"journal\":{\"name\":\"2016 International Conference on Identification, Information and Knowledge in the Internet of Things (IIKI)\",\"volume\":\"6 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 International Conference on Identification, Information and Knowledge in the Internet of Things (IIKI)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/IIKI.2016.56\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 International Conference on Identification, Information and Knowledge in the Internet of Things (IIKI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IIKI.2016.56","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Android Malicious Application Detection Based on Ontology Technology Integrated with Permissions and System Calls
In this paper, for sharing the security knowledge of smart phone applications and detecting the malicious applications, one new method was put forward based on ontology technology which considered permissions and system calls information with JESS inference engine. In order to get final feature information list and define SWRL rules, this paper extracted and analyzed permissions and system calls information which were significant and representative ones. The constructed application ontology referred to application domain knowledge including permissions and system calls etc. so that explicit and tacit knowledge could be shared. By selecting defined SWRL rules and running JESS inference engine, this paper demonstrated that our detection method could effectively classify malware and benign. Experimental results showed that the accuracy reached 95.89%. Moreover, through a comparative analysis, it could be seen that the application security detection based on ontology method outperformed two existing Android malware detection schemes for combining two characteristic information-permissions and system calls.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
