本文已被:浏览 1005次 下载 1806次
Received:May 19, 2020 Revised:June 16, 2020
Received:May 19, 2020 Revised:June 16, 2020
中文摘要: 针对当前Android恶意程序检测方法对未知应用程序检测能力不足的问题, 提出了一种基于textCNN神经网络模型的Android恶意程序检测方法. 该方法使用多种触发机制从不同层面上诱导激发程序潜在的恶意行为; 针对不同层面上的函数调用, 采用特定的hook技术对程序行为进行采集; 针对采集到的行为日志, 使用fastText算法来提取词向量; 最后使用textCNN模型根据行为日志对Android程序进行检测与识别. 实验结果表明, 该方法对Android恶意程序检测的平均准确率达到了93.3%, 验证了该方法对Android恶意程序检测具有较高的有效性与正确性.
Abstract:Aiming at the problem that the current Android malware detection method has insufficient ability to detect unknown applications, this study proposes an Android malware detection method based on the textCNN neural network model. This method uses a variety of trigger mechanisms to induce the potential malicious behavior of the application from different levels. For function calls at different levels, the specific hook technology is used to collect the application behavior. For the collected behavior logs, the fastText algorithm is used to extract word vectors. Finally, the textCNN model is used to detect and identify Android applications based on behavior logs. Experimental results show that the average accuracy of the method for detecting Android malicious applications reaches 93.3%, which verifies that the method has high effectiveness and correctness for detecting Android malwares.
keywords: Android system malicious program detection behavior trigger hook technology fastText model textCNN model
文章编号: 中图分类号: 文献标志码:
基金项目:
引用文本:
张雄冠,邵培南.基于textCNN模型的Android恶意程序检测.计算机系统应用,2021,30(1):114-121
ZHANG Xiong-Guan,SHAO Pei-Nan.Android Malware Detection Based on textCNN Model.COMPUTER SYSTEMS APPLICATIONS,2021,30(1):114-121
张雄冠,邵培南.基于textCNN模型的Android恶意程序检测.计算机系统应用,2021,30(1):114-121
ZHANG Xiong-Guan,SHAO Pei-Nan.Android Malware Detection Based on textCNN Model.COMPUTER SYSTEMS APPLICATIONS,2021,30(1):114-121