AppContext: Differentiating Malicious and Benign Mobile App Behaviors Using Context
ICSE, pp. 303-313, 2015.
Our evaluation results suggest that the maliciousness of a security-sensitive behavior is more closely related to the behavior’s intention than the type of the security-sensitive resources that the behavior accesses
Mobile malware attempts to evade detection during app analysis by mimicking security-sensitive behaviors of benign apps that provide similar functionality (e.g., sending SMS messages), and suppressing their payload to reduce the chance of being observed (e.g., executing only its payload at night). Since current approaches focus their anal...More
PPT (Upload PPT)