Android Malware Traffic Feature Analysis Technique Based on Improved Bayesian Model

Fei WU,Yuan PEI,Xiang-qian WU
DOI: https://doi.org/10.3969/j.issn.1000-1220.2018.02.009
2018-01-01
Abstract:The applications which static analysis methods can not accurately identify and determine,such as the high degree of source code confusion or those wihch use dynamic code loading technology,we extracting the network traffic generated during the Internet connection.Then the information gain algorithm is used to select the discrimination features and set up improved na?ve Bayes classifier with natural logarithm of multiplier and Laplace calibration.After ten-fold cross validation method,the improved Bayes model can reduce the time complexity and achieve 93% accuracy.Comparing with the method based on privilege features,the improved na?ve Bayes classifier based on traffic features has better classification performance,at the same time,this method also provides a new way to detect android mal-wares,accurately.
What problem does this paper attempt to address?