ADAM: An automatic and extensible platform to stress test android anti-virus systems
Refereed conference paper presented and published in conference proceedings


摘要With the rising threat of smartphone malware, both academic community and commercial anti-virus companies proposed many methodologies and products to defend against smartphone malware. Thus, how to assess the effectiveness of these defense mechanisms against existing and unknown malware becomes important. We propose ADAM, an automated and extensible system that can evaluate, via large-scale stress tests, the effectiveness of anti-virus systems against a variety of malware samples for the Android platform. Specifically, ADAM can automatically transform an original malware sample to different variants via repackaging and obfuscation techniques in order to evaluate the robustness of different anti-virus systems against malware mutation. The transformation and evaluation processes of ADAM are fully automatic, generic, and extensible for different types of malware, anti-virus systems, and malware transformation techniques. We demonstrate the efficacy of ADAM using 222 Android malware samples that we collected in the wild. Using ADAM, we generate different variants based on our collected malware samples, and evaluate the detection of these variants against commercial anti-virus systems. © 2013 Springer-Verlag Berlin Heidelberg.
著者Zheng M., Lee P.P.C., Lui J.C.S.
會議名稱9th GI International Conference on Detection of Intrusions and Malware and Vulnerability Assessment, DIMVA 2012
會議地點Heraklion, Crete
詳細描述organized by Security-Intrusion Detection and Response (SIDAR)
卷號7591 LNCS
出版社Springer Verlag
頁次82 - 101

上次更新時間 2021-25-11 於 00:02