Method and device for Android malicious software classification based on Naive Bayes

A Bayesian classification and malware technology, applied in computer security devices, instruments, electrical digital data processing, etc., can solve the problems of high sensitivity of missing data, high error rate, and high classification accuracy of artificial neural network algorithms, reaching Improve the efficiency of classification and the effect of accurate classification

Inactive Publication Date: 2016-04-06
XIAMEN ANSCEN NETWORK TECH CO LTD
View PDF8 Cites 25 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Support vector machine (SupportVectorMachine, SVM) can solve high-dimensional problems and nonlinear problems well, but it is highly sensitive to missing data; K-nearest neighbor (KNN) algorithm is simple and effective, but the amount of calculation is large, When the sample is unbalanced, the error rate is high; the artificial neural network algorithm has high classification accuracy, but requires a large number of parameter support

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for Android malicious software classification based on Naive Bayes
  • Method and device for Android malicious software classification based on Naive Bayes
  • Method and device for Android malicious software classification based on Naive Bayes

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0055] To further illustrate the various embodiments, the present invention is provided with accompanying drawings. These drawings are a part of the disclosure of the present invention, which are mainly used to illustrate the embodiments, and can be combined with related descriptions in the specification to explain the operating principles of the embodiments. With reference to these contents, those skilled in the art should understand other possible implementations and advantages of the present invention. The present invention will be further described in conjunction with the accompanying drawings and specific embodiments.

[0056] In this embodiment, feature attributes are firstly extracted from published application software, and a list of feature attributes and its training set are established. Currently, there are two existing methods for analyzing APK applications, static analysis and dynamic analysis.

[0057] Static analysis mainly analyzes malicious codes through fil...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and a device for Android malicious software classification based on Naive Bayes, wherein the method is used for extracting authority attribute characteristics and sensitive API (Application Programming Interface) attribute characteristics of malicious software mainly through a dynamic and static combination method, and performing classification through a Naive Bayes algorithm; and the device comprises a characteristic attribute set module, an authority characteristic attribute module, a sensitive API characteristic attribute module, a Naive Bayes classification model module, an output module and an updating module. The algorithm has firm mathematical foundation and steady classification efficiency, and needs relatively less parameters; the algorithm is simple; and malicious applications can be classified quickly and accurately, and thus, classification efficiency is improved.

Description

technical field [0001] The invention relates to the field of software security, in particular to a naive Bayesian-based Android malware classification method and device. Background technique [0002] Since Android came out in 2007, Google has positioned it as an open-source mobile operating system, adopting a software stack architecture. The bottom layer is based on the Linux kernel, the middle layer includes software libraries and Dalivk virtual machines, and the top layer is various applications. . With the rapid development of Android, the number of mobile terminals, software developers, and applications based on the Android platform is increasing day by day to become the dominant position in the smartphone market. The target of new malicious software and variant Trojan horses are growing explosively every quarter, and there are more and more attacks and threats on mobile terminals, and the leakage of private information. [0003] At present, the focus of Android platfo...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56
CPCG06F21/561
Inventor 魏丽珍邱建张婷高静峰罗佳
Owner XIAMEN ANSCEN NETWORK TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap