The rapid increase in smart phone users has enabled the application marketplace to grow dramatically. The black market presence has also grown rapidly, where paid applications are modified for free download. As a consequence, malicious applications are expected to spread with increasing frequency. In particular, the Android marketplace, where applications allowed to register without prior security checks, breeds further indiscreet distribution of malicious applications. This paper suggests a framework for detecting malicious behaviors in Android smart phone applications. The framework proposed here automatically collects applications from the official Android marketplace or from black markets, analyzes them and detects malicious behaviors. Furthermore, a pilot system was implemented based on the proposed framework, which can detect malicious applications, preventing users from any loss due to malware.
[1]
Robert H. Deng,et al.
Insights into Malware Detection and Prevention on Mobile Phones
,
2009,
FGIT-SecTech.
[2]
Sahin Albayrak,et al.
An Android Application Sandbox system for suspicious software detection
,
2010,
2010 5th International Conference on Malicious and Unwanted Software.
[3]
Yuval Elovici,et al.
Applying Behavioral Detection on Android-Based Devices
,
2010,
MOBILWARE.
[4]
Songwu Lu,et al.
SmartSiren: virus detection and alert for smartphones
,
2007,
MobiSys '07.
[5]
Florian Michahelles,et al.
Detection of Malicious Applications on Android OS
,
2010,
ICWF.
[6]
Steve Hanna,et al.
Android permissions demystified
,
2011,
CCS '11.
[7]
David A. Wagner,et al.
The Effectiveness of Application Permissions
,
2011,
WebApps.