Dynamic virus detection method and device for equipment based on Android system

A virus detection, Android system technology, applied in the field of information security, can solve problems such as undetectable

Active Publication Date: 2014-02-05
XIAMEN MEIYA PICO INFORMATION
View PDF6 Cites 33 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Compared with static detection, this method can more effectively detect the behavior of applications applying for permissions, but it also relies on the signature information of the virus database, and detects based on the API of the Android framework layer. Some viruses use the underlying interface to invade, and this method cannot be used at all. detected

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Dynamic virus detection method and device for equipment based on Android system
  • Dynamic virus detection method and device for equipment based on Android system
  • Dynamic virus detection method and device for equipment based on Android system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0076] The virus dynamic detection method of the device based on the Android system provided by the embodiment of the present invention, see figure 1 , the detection process is mainly performed by the guidance module 101 , the interception module 102 and the authority management module 103 . The guide module 101 is compiled into an executable program, the interception module 102 is compiled into a dynamic library, and the authority management module 103 is an upper-layer application APK. The guide module 101 imports the interception module 102 into the target process without interrupting the target process, and starts the interception module 102; the interception module 102 then dynamically redirects the original API specified in the dynamic library loaded by the target process to Intercept the API in the module 102, thereby changing the original API flow and detecting suspicious behavior; when the intercepting module 102 detects suspicious behavior, communicate with the righ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to the field of information safety, and provides a dynamic virus detection method for equipment based on the Android system. The method comprises the following steps: the on-going target process required to be subjected to virus detection is acquired; a primitive API (Application Program Interface) function which is assigned in a dynamic library loaded through the target process is redirected into the API function in the interception program; the suspicious act of the target process is detected. According to the invention, interception and troubleshooting are performed in the Android underlying library, so that more underlying suspicious acts of the application program can be evaluated more effectively, and the detection method is a convenient and efficient virus detection method.

Description

technical field [0001] The present invention relates to the field of information security, in particular to a dynamic virus detection method for an Android system-based device. Background technique [0002] At present, the Android system is the most mainstream operating system in the field of mobile terminals, and users have higher and higher requirements for system security. There are currently two main detection methods for malware. One is static detection, which analyzes the decompiled JAVA bytecode of the APK (Android Package) installation package and the signature of the virus. The other is dynamic detection, which detects whether the program has malicious behavior when the program is running, mainly to detect whether the suspicious feature code is released when the program is running, using the API (Application Program Interface) of the Android framework layer Determine whether a specific permission has been applied for during the running of the application. [0003]...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56G06F9/44
CPCG06F21/566
Inventor 魏丽珍吴鸿伟
Owner XIAMEN MEIYA PICO INFORMATION
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap