@inproceedings{52c4b90b3b7f431d86ca1940a14c273c,
title = "Dynamic Android Malware Analysis with De-Identification of Personal Identifiable Information",
abstract = "The rapid performance improvement and versatility of Android smartphone make people's lives more and more dependent on it. Not only making smartphone carry more personal privacy information, but also making it a target for hackers. Many security-prevent tools collect application information from smartphones for application analysis, but this information may cause privacy concerns. This paper proposes a system called ShadowDroid, which uses dynamic analysis technology for Android applications. ShadowDroid establishes a VPN on the smartphone to intercept all the network traffic to collect the data needed for analysis. At the same time, through the method of string matching to find out the private information from the data, and then de-identify it to make sure that the uploaded analysis data does not contain any personal identifiable information. ShadowDroid classifies malicious applications into three types: spyware, botware, and ransomware. Knowing the type of malicious application allows users to find the right response strategy. In addition, for malicious applications that mix multiple malicious behaviors, ShadowDroid calculates the similarity between the uploaded analytical data and the standard feature set of each type, thereby helping the user to determine which malicious behaviors the malicious application may contain. The experiment confirmed that the accuracy of the classification result of ShadowDroid without the privacy information leakage of smartphone users is 90%, only slightly lower than the accuracy of 92% of [1]. ",
keywords = "Android, Application Classification, De-Identification, Dynamic Analysis, Network Packet",
author = "Hu, {Che Chun} and Jeng, {Tzung Han} and Chen, {Yi Ming}",
note = "Publisher Copyright: {\textcopyright} 2020 ACM.; 3rd International Conference on Computing and Big Data, ICCBD 2020 and its Workshop the 2020 2nd International Conference on Computer, Software Engineering and Applications, CSEA 2020 ; Conference date: 05-08-2020 Through 07-08-2020",
year = "2020",
month = aug,
day = "5",
doi = "10.1145/3418688.3418694",
language = "???core.languages.en_GB???",
series = "ACM International Conference Proceeding Series",
publisher = "Association for Computing Machinery",
pages = "30--36",
booktitle = "ICCBD 2020 - 2020 3rd International Conference on Computing and Big Data",
}