计算机技术与发展2017,Vol.27Issue(10):121-125,5.DOI:10.3969/j.issn.1673-629X.2017.10.026
基于SimHash算法的Android恶意程序检测
Android Malware Detecting Based on SimHash Algorithm
摘要
Abstract
Current Android applications vary in quality,while there exist many potential malwares threatening privacy and information safety. In order to cope with this particular predicament,a new solution using SimHash algorithm for Android malware detection is pro-posed on the basis of analysis of signature detection technology based on MD5,which consists of three steps including APK signature-text extraction,signature-text digital fingerprint generation and results contrast. In order to textualize APK files,malware analyzing program androlyze. py is introduced. Meanwhile,considering the efficiency of Android signatures,Android program permission,call function,re-ceiver and services have been converted into composite signatures APK text. Then,the composite signatures text has been converted into string,of which the Hamming Distance is counted as measurement for the security level. In addition,after practically analyzing and com-pared with 360 Anti-virus Software the overall detecting efficiency is proved to be better,thus considered as an effective method of An-droid malware detection.关键词
SimHash算法/Android恶意程序检测/复合特征文本/相似性比较Key words
SimHash algorithm/Android malware detecting/composite signatures text/similarity comparison分类
信息技术与安全科学引用本文复制引用
李红灵,詹翊..基于SimHash算法的Android恶意程序检测[J].计算机技术与发展,2017,27(10):121-125,5.基金项目
国家自然科学基金资助项目(61562090) (61562090)
云南大学教育教学改革研究项目 ()
