摘要
针对Android平台安全问题,提出了手机端和服务端协作的恶意代码检测方案,手机端应用主要采用基于permission检测技术,实现轻量级的检测。服务端检测系统主要负责对手机端提交的可疑样本进行检测,同时实现了软件行为分析,特征库更新,与手机端同步等功能。其中服务端检测技术包括基于permission检测技术、基于字节码静态检测技术和基于root权限的动态检测技术。实验测试结果表明,3种检测技术能达到较好的检测效果。
For the Android platform security problem, a mobile client and server collaborative malware detection pro- posal was proposed, where mobile client application was mainly based on permission detection technology and implemented lightweight testing. The server-side detection system is mainly responsible for testing suspicions samples submitted by the mobile terminals, meanwhile implements the functions of software behavior analysis, signature library updates, and mobile client synchronization, etc. The server-side detection techniques include permission-based detection technol- ogy, bytecode-based static detection technology and root-based dynamic detection technology. The result of the experiment shows that the three detection techniques can achieve better detection results.
出处
《通信学报》
EI
CSCD
北大核心
2014年第8期78-85,94,共9页
Journal on Communications
基金
国家自然科学基金资助项目(61170282)~~
关键词
恶意代码检测
静态分析
动态分析
权限分析
malcode detection
static analysis
dynamic analysis
permission analysis
