A performance-sensitive malware detection system using deep learning on mobile devices

A performance-sensitive malware detection system using deep learning on mobile devices

Currently, Android malware detection is mostly performed on server side against the increasing number of malware. Powerful computing resource provides more exhaustive protection for app markets than maintaining detection by a single user. However, apart from the applications (apps) provided by the o...

Full description

Saved in:
Bibliographic Details
Main Authors: FENG, Ruitao, CHEN, Sen, XIE, Xiaofei, MENG, Guozhu, LIN, Shang-Wei, LIU, Yang
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2020
Subjects:
Malware
Androids
Humanoid robots
Feature extraction
Mobile handsets
Performance evaluation
Security
Android malware
malware detection
deep neural network
mobile platform
performance
OS and Networks
Software Engineering
Online Access:https://ink.library.smu.edu.sg/sis_research/6937
https://ink.library.smu.edu.sg/context/sis_research/article/7940/viewcontent/2005.04970__1_.pdf
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
id sg-smu-ink.sis_research-7940
record_format dspace
spelling sg-smu-ink.sis_research-79402022-03-04T09:14:45Z A performance-sensitive malware detection system using deep learning on mobile devices FENG, Ruitao CHEN, Sen XIE, Xiaofei MENG, Guozhu LIN, Shang-Wei LIU, Yang Currently, Android malware detection is mostly performed on server side against the increasing number of malware. Powerful computing resource provides more exhaustive protection for app markets than maintaining detection by a single user. However, apart from the applications (apps) provided by the official market (i.e., Google Play Store), apps from unofficial markets and third-party resources are always causing serious security threats to end-users. Meanwhile, it is a time-consuming task if the app is downloaded first and then uploaded to the server side for detection, because the network transmission has a lot of overhead. In addition, the uploading process also suffers from the security threats of attackers. Consequently, a last line of defense on mobile devices is necessary and much-needed. In this paper, we propose an effective Android malware detection system, MobiTive, leveraging customized deep neural networks to provide a real-time and responsive detection environment on mobile devices. MobiTive is a pre-installed solution rather than an app scanning and monitoring engine using after installation, which is more practical and secure. Although a deep learning-based approach can be maintained on server side efficiently for malware detection, original deep learning models cannot be directly deployed and executed on mobile devices due to various performance limitations, such as computation power, memory size, and energy. Therefore, we evaluate and investigate the following key points: (1) the performance of different feature extraction methods based on source code or binary code; (2) the performance of different feature type selections for deep learning on mobile devices; (3) the detection accuracy of different deep neural networks on mobile devices; (4) the real-time detection performance and accuracy on different mobile devices; (5) the potential based on the evolution trend of mobile devices' specifications; and finally we further propose a practical solution (MobiTive) to detect Android malware on mobile devices. 2020-09-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/6937 info:doi/10.1109/TIFS.2020.3025436 https://ink.library.smu.edu.sg/context/sis_research/article/7940/viewcontent/2005.04970__1_.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Malware Androids Humanoid robots Feature extraction Mobile handsets Performance evaluation Security Android malware malware detection deep neural network mobile platform performance OS and Networks Software Engineering
institution Singapore Management University
building SMU Libraries
continent Asia
country Singapore
Singapore
content_provider SMU Libraries
collection InK@SMU
language English
topic Malware
Androids
Humanoid robots
Feature extraction
Mobile handsets
Performance evaluation
Security
Android malware
malware detection
deep neural network
mobile platform
performance
OS and Networks
Software Engineering
spellingShingle Malware
Androids
Humanoid robots
Feature extraction
Mobile handsets
Performance evaluation
Security
Android malware
malware detection
deep neural network
mobile platform
performance
OS and Networks
Software Engineering
FENG, Ruitao
CHEN, Sen
XIE, Xiaofei
MENG, Guozhu
LIN, Shang-Wei
LIU, Yang
A performance-sensitive malware detection system using deep learning on mobile devices
description Currently, Android malware detection is mostly performed on server side against the increasing number of malware. Powerful computing resource provides more exhaustive protection for app markets than maintaining detection by a single user. However, apart from the applications (apps) provided by the official market (i.e., Google Play Store), apps from unofficial markets and third-party resources are always causing serious security threats to end-users. Meanwhile, it is a time-consuming task if the app is downloaded first and then uploaded to the server side for detection, because the network transmission has a lot of overhead. In addition, the uploading process also suffers from the security threats of attackers. Consequently, a last line of defense on mobile devices is necessary and much-needed. In this paper, we propose an effective Android malware detection system, MobiTive, leveraging customized deep neural networks to provide a real-time and responsive detection environment on mobile devices. MobiTive is a pre-installed solution rather than an app scanning and monitoring engine using after installation, which is more practical and secure. Although a deep learning-based approach can be maintained on server side efficiently for malware detection, original deep learning models cannot be directly deployed and executed on mobile devices due to various performance limitations, such as computation power, memory size, and energy. Therefore, we evaluate and investigate the following key points: (1) the performance of different feature extraction methods based on source code or binary code; (2) the performance of different feature type selections for deep learning on mobile devices; (3) the detection accuracy of different deep neural networks on mobile devices; (4) the real-time detection performance and accuracy on different mobile devices; (5) the potential based on the evolution trend of mobile devices' specifications; and finally we further propose a practical solution (MobiTive) to detect Android malware on mobile devices.
format text
author FENG, Ruitao
CHEN, Sen
XIE, Xiaofei
MENG, Guozhu
LIN, Shang-Wei
LIU, Yang
author_facet FENG, Ruitao
CHEN, Sen
XIE, Xiaofei
MENG, Guozhu
LIN, Shang-Wei
LIU, Yang
author_sort FENG, Ruitao
title A performance-sensitive malware detection system using deep learning on mobile devices
title_short A performance-sensitive malware detection system using deep learning on mobile devices
title_full A performance-sensitive malware detection system using deep learning on mobile devices
title_fullStr A performance-sensitive malware detection system using deep learning on mobile devices
title_full_unstemmed A performance-sensitive malware detection system using deep learning on mobile devices
title_sort performance-sensitive malware detection system using deep learning on mobile devices
publisher Institutional Knowledge at Singapore Management University
publishDate 2020
url https://ink.library.smu.edu.sg/sis_research/6937
https://ink.library.smu.edu.sg/context/sis_research/article/7940/viewcontent/2005.04970__1_.pdf
_version_ 1770576147605618688

Similar Items