FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2508256772> ?p ?o ?g. }

• W2508256772 abstract "This paper proposes a technique for automatically learning semantic malware signatures for Android from very few samples of a malware family. The key idea underlying our technique is to look for a maximally suspicious common subgraph (MSCS) that is shared between all known instances of a malware family. An MSCS describes the shared functionality between multiple Android applications in terms of inter-component call relations and their semantic metadata (e.g., data-flow properties). Our approach identifies such maximally suspicious common subgraphs by reducing the problem to maximum satisfiability. Once a semantic signature is learned, our approach uses a combination of static analysis and a new approximate signature matching algorithm to determine whether an Android application matches the semantic signature characterizing a given malware family. We have implemented our approach in a tool called ASTROID and show that it has a number of advantages over state-of-the-art malware detection techniques. First, we compare the semantic malware signatures automatically synthesized by ASTROID with manually-written signatures used in previous work and show that the signatures learned by ASTROID perform better in terms of accuracy as well as precision. Second, we compare ASTROID against two state-of-the-art malware detection tools and demonstrate its advantages in terms of interpretability and accuracy. Finally, we demonstrate that ASTROID's approximate signature matching algorithm is resistant to behavioral obfuscation and that it can be used to detect zero-day malware. In particular, we were able to find 22 instances of zero-day malware in Google Play that are not reported as malware by existing tools." @default.
• W2508256772 created "2016-09-16" @default.
• W2508256772 creator A5006424908 @default.
• W2508256772 creator A5022515671 @default.
• W2508256772 creator A5024791744 @default.
• W2508256772 creator A5029243071 @default.
• W2508256772 creator A5087247518 @default.
• W2508256772 date "2016-08-22" @default.
• W2508256772 modified "2023-10-18" @default.
• W2508256772 title "Automated Synthesis of Semantic Malware Signatures using Maximum Satisfiability" @default.
• W2508256772 cites W121173099 @default.
• W2508256772 cites W134490355 @default.
• W2508256772 cites W1445387515 @default.
• W2508256772 cites W1491356120 @default.
• W2508256772 cites W1630356589 @default.
• W2508256772 cites W1865564993 @default.
• W2508256772 cites W1963971515 @default.
• W2508256772 cites W1982773740 @default.
• W2508256772 cites W1987846217 @default.
• W2508256772 cites W1988036170 @default.
• W2508256772 cites W2009689138 @default.
• W2508256772 cites W2068211976 @default.
• W2508256772 cites W2092942461 @default.
• W2508256772 cites W2120900307 @default.
• W2508256772 cites W2122672392 @default.
• W2508256772 cites W2127723417 @default.
• W2508256772 cites W2131523719 @default.
• W2508256772 cites W2153635508 @default.
• W2508256772 cites W2168103835 @default.
• W2508256772 cites W2183624377 @default.
• W2508256772 doi "https://doi.org/10.48550/arxiv.1608.06254" @default.
• W2508256772 hasPublicationYear "2016" @default.
• W2508256772 type Work @default.
• W2508256772 sameAs 2508256772 @default.
• W2508256772 citedByCount "2" @default.
• W2508256772 countsByYear W25082567722019 @default.
• W2508256772 countsByYear W25082567722021 @default.
• W2508256772 crossrefType "posted-content" @default.
• W2508256772 hasAuthorship W2508256772A5006424908 @default.
• W2508256772 hasAuthorship W2508256772A5022515671 @default.
• W2508256772 hasAuthorship W2508256772A5024791744 @default.
• W2508256772 hasAuthorship W2508256772A5029243071 @default.
• W2508256772 hasAuthorship W2508256772A5087247518 @default.
• W2508256772 hasBestOaLocation W25082567721 @default.
• W2508256772 hasConcept C111919701 @default.
• W2508256772 hasConcept C124101348 @default.
• W2508256772 hasConcept C154945302 @default.
• W2508256772 hasConcept C168773769 @default.
• W2508256772 hasConcept C2524010 @default.
• W2508256772 hasConcept C2779395397 @default.
• W2508256772 hasConcept C2779696439 @default.
• W2508256772 hasConcept C2989133298 @default.
• W2508256772 hasConcept C33923547 @default.
• W2508256772 hasConcept C38652104 @default.
• W2508256772 hasConcept C40305131 @default.
• W2508256772 hasConcept C41008148 @default.
• W2508256772 hasConcept C541664917 @default.
• W2508256772 hasConcept C557433098 @default.
• W2508256772 hasConcept C80444323 @default.
• W2508256772 hasConcept C84525096 @default.
• W2508256772 hasConceptScore W2508256772C111919701 @default.
• W2508256772 hasConceptScore W2508256772C124101348 @default.
• W2508256772 hasConceptScore W2508256772C154945302 @default.
• W2508256772 hasConceptScore W2508256772C168773769 @default.
• W2508256772 hasConceptScore W2508256772C2524010 @default.
• W2508256772 hasConceptScore W2508256772C2779395397 @default.
• W2508256772 hasConceptScore W2508256772C2779696439 @default.
• W2508256772 hasConceptScore W2508256772C2989133298 @default.
• W2508256772 hasConceptScore W2508256772C33923547 @default.
• W2508256772 hasConceptScore W2508256772C38652104 @default.
• W2508256772 hasConceptScore W2508256772C40305131 @default.
• W2508256772 hasConceptScore W2508256772C41008148 @default.
• W2508256772 hasConceptScore W2508256772C541664917 @default.
• W2508256772 hasConceptScore W2508256772C557433098 @default.
• W2508256772 hasConceptScore W2508256772C80444323 @default.
• W2508256772 hasConceptScore W2508256772C84525096 @default.
• W2508256772 hasLocation W25082567721 @default.
• W2508256772 hasOpenAccess W2508256772 @default.
• W2508256772 hasPrimaryLocation W25082567721 @default.
• W2508256772 hasRelatedWork W2395100307 @default.
• W2508256772 hasRelatedWork W2567427693 @default.
• W2508256772 hasRelatedWork W2945354769 @default.
• W2508256772 hasRelatedWork W3037087970 @default.
• W2508256772 hasRelatedWork W3157802262 @default.
• W2508256772 hasRelatedWork W4285357405 @default.
• W2508256772 hasRelatedWork W4286741520 @default.
• W2508256772 hasRelatedWork W4311731381 @default.
• W2508256772 hasRelatedWork W4312234627 @default.
• W2508256772 hasRelatedWork W4316077018 @default.
• W2508256772 isParatext "false" @default.
• W2508256772 isRetracted "false" @default.
• W2508256772 magId "2508256772" @default.
• W2508256772 workType "article" @default.