Auto-creation of Robust Android Malware Family Trees

Kazuya Nomura; Daiki Chiba; Mitsuaki Akiyama; Masato Uchida

doi:10.2197/IPSJJIP.29.801

Auto-creation of Robust Android Malware Family Trees

Kazuya Nomura, Daiki Chiba, Mitsuaki Akiyama, Masato Uchida

基幹理工学部

研究成果: Article › 査読

抄録

Malware targeting Android OS has been increasing for years and Android malware cyberattacks in particular are growing in number. To provide effective countermeasures against Android malware, we need to not only detect the malware at a certain point in time but also analyze the time-series changes in the malware, given that the family of Android malware will increase in number over time. In this paper, we propose a new method for automatically creating a “family tree” of Android malware that can represent how the newly detected Android malware relates to existing Android malware and its families and how they have changed over time. Our evaluation based on two actual Android malware datasets shows that our proposed family tree can accurately represent time-series changes between malware families.

本文言語	English
ページ（範囲）	801-811
ページ数	11
ジャーナル	Journal of information processing
巻	29
DOI	https://doi.org/10.2197/IPSJJIP.29.801
出版ステータス	Published - 2021

ASJC Scopus subject areas

コンピュータサイエンス（全般）

文献へのアクセス

10.2197/IPSJJIP.29.801

他のファイルとリンク

引用スタイル

@article{cfdb92f5ed5641389673a73d1bfc4063,

title = "Auto-creation of Robust Android Malware Family Trees",

abstract = "Malware targeting Android OS has been increasing for years and Android malware cyberattacks in particular are growing in number. To provide effective countermeasures against Android malware, we need to not only detect the malware at a certain point in time but also analyze the time-series changes in the malware, given that the family of Android malware will increase in number over time. In this paper, we propose a new method for automatically creating a “family tree” of Android malware that can represent how the newly detected Android malware relates to existing Android malware and its families and how they have changed over time. Our evaluation based on two actual Android malware datasets shows that our proposed family tree can accurately represent time-series changes between malware families.",

keywords = "Android, Family tree, Malware",

author = "Kazuya Nomura and Daiki Chiba and Mitsuaki Akiyama and Masato Uchida",

note = "Funding Information: Acknowledgments This work was supported in part by the Japan Society for the Promotion of Science through Grants-in-Aid for Scientific Research (C) (20K11800). We thank Naoki Fukushi for the valuable discussions he provided. Funding Information: This work was supported in part by the Japan Society for the Promotion of Science through Grants-in-Aid for Scientific Research (C) (20K11800). We thank Naoki Fukushi for the valuable discussions he provided. Publisher Copyright: {\textcopyright} 2021 Information Processing Society of Japan.",

year = "2021",

doi = "10.2197/IPSJJIP.29.801",

language = "English",

volume = "29",

pages = "801--811",

journal = "Journal of information processing",

issn = "0387-5806",

publisher = "Information Processing Society of Japan",

}

TY - JOUR

T1 - Auto-creation of Robust Android Malware Family Trees

AU - Nomura, Kazuya

AU - Chiba, Daiki

AU - Akiyama, Mitsuaki

AU - Uchida, Masato

N1 - Funding Information: Acknowledgments This work was supported in part by the Japan Society for the Promotion of Science through Grants-in-Aid for Scientific Research (C) (20K11800). We thank Naoki Fukushi for the valuable discussions he provided. Funding Information: This work was supported in part by the Japan Society for the Promotion of Science through Grants-in-Aid for Scientific Research (C) (20K11800). We thank Naoki Fukushi for the valuable discussions he provided. Publisher Copyright: © 2021 Information Processing Society of Japan.

PY - 2021

Y1 - 2021

N2 - Malware targeting Android OS has been increasing for years and Android malware cyberattacks in particular are growing in number. To provide effective countermeasures against Android malware, we need to not only detect the malware at a certain point in time but also analyze the time-series changes in the malware, given that the family of Android malware will increase in number over time. In this paper, we propose a new method for automatically creating a “family tree” of Android malware that can represent how the newly detected Android malware relates to existing Android malware and its families and how they have changed over time. Our evaluation based on two actual Android malware datasets shows that our proposed family tree can accurately represent time-series changes between malware families.

AB - Malware targeting Android OS has been increasing for years and Android malware cyberattacks in particular are growing in number. To provide effective countermeasures against Android malware, we need to not only detect the malware at a certain point in time but also analyze the time-series changes in the malware, given that the family of Android malware will increase in number over time. In this paper, we propose a new method for automatically creating a “family tree” of Android malware that can represent how the newly detected Android malware relates to existing Android malware and its families and how they have changed over time. Our evaluation based on two actual Android malware datasets shows that our proposed family tree can accurately represent time-series changes between malware families.

KW - Android

KW - Family tree

KW - Malware

UR - http://www.scopus.com/inward/record.url?scp=85123836102&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85123836102&partnerID=8YFLogxK

U2 - 10.2197/IPSJJIP.29.801

DO - 10.2197/IPSJJIP.29.801

M3 - Article

AN - SCOPUS:85123836102

SN - 0387-5806

VL - 29

SP - 801

EP - 811

JO - Journal of information processing

JF - Journal of information processing

ER -

Auto-creation of Robust Android Malware Family Trees

抄録

ASJC Scopus subject areas

文献へのアクセス

他のファイルとリンク

フィンガープリント

引用スタイル