Professional Documents
Culture Documents
ndice
ADroid: Anomaly-based Detection of Malicious Events
1. Contexto
2. Objetivo
3. ADroid
PGT NESG/UCyS - UGR 2017
2
ADroid: Anomaly-based Detection of Malicious Events
PGT NESG/UCyS - UGR 2017
3
NESG
1. Contexto
Fuente:
Sophos
ADroid: Anomaly-based Detection of Malicious Events
PGT NESG/UCyS - UGR 2017
n Impacto mundial:
n OS:
4
Fuente:
Kaspersky
NESG
1. Contexto
ADroid: Anomaly-based Detection of Malicious Events
PGT NESG/UCyS - UGR 2017
5
NESG
1. Contexto
NESG
1. Contexto
n Software disponible:
7
Fuente:
NESG
1. Contexto
Surez-Tangil
NESG
ndice
ADroid: Anomaly-based Detection of Malicious Events
1. Contexto
2. Objetivo
3. ADroid
PGT NESG/UCyS - UGR 2017
4. Resultados experimentales
5. Conclusiones
8
NESG
2. Objetivo
ADroid: Anomaly-based Detection of Malicious Events
n Objetivo:
9
NESG
ndice
ADroid: Anomaly-based Detection of Malicious Events
1. Contexto
2. Objetivo
3. ADroid
PGT NESG/UCyS - UGR 2017
4. Resultados experimentales
5. Conclusiones
10
NESG
3. ADroid
Perfiles reglas
(manual)
PGT NESG/UCyS - UGR 2017
Interfaces
Apps Anlisis/
Trazas
Monitor (auto) deteccin
Comms
(lightweight)
Alarma
Visualizacin Accin
11
NESG
3. ADroid
ADroid: Anomaly-based Detection of Malicious Events
q Interfaces
q Comms
13
q Apps
NESG
3. ADroid
ADroid: Anomaly-based Detection of Malicious Events
PGT NESG/UCyS - UGR 2017
14
NESG
3. ADroid
ADroid: Anomaly-based Detection of Malicious Events
PGT NESG/UCyS - UGR 2017
15
NESG
3. ADroid
ndice
ADroid: Anomaly-based Detection of Malicious Events
1. Contexto
2. Objetivo
3. ADroid
PGT NESG/UCyS - UGR 2017
4. Resultados experimentales
5. Conclusiones
16
NESG
4. Resultados
ADroid: Anomaly-based Detection of Malicious Events
n Bases datos:
q Goodware: 240
(Google Play)
q Malware: 480
PGT NESG/UCyS - UGR 2017
(contagio)
17
NESG
4. Resultados
ADroid: Anomaly-based Detection of Malicious Events
n Resultados de deteccin:
q Cubot GT99, 1GB, 1.2GHz, core duo
ADroid: Anomaly-based detection of malicious events in Android platforms 19
PGT NESG/UCyS - UGR 2017
ndice
ADroid: Anomaly-based Detection of Malicious Events
1. Contexto
2. Objetivo
3. ADroid
PGT NESG/UCyS - UGR 2017
4. Resultados experimentales
5. Conclusiones
19
NESG
5. Conclusiones
ADroid: Anomaly-based Detection of Malicious Events
q Dispositivos Android
PGT NESG/UCyS - UGR 2017
q Complemento con
esquemas colaborativos
20