邮箱登录 | 所务办公 | 收藏本站 | English | 中国科学院
 
首页 计算所概况 新闻动态 科研成果 研究队伍 国际交流 技术转移 研究生教育 学术出版物 党群园地 科学传播 信息公开
国际交流
交流动态
学术活动
学术交流
现在位置:首页 > 国际交流 > 学术活动
Mobile Malware Detection in Big-Data Era
2017-08-31 | 【 【打印】【关闭】

  报告时间:2017年9月11日(周一) 下午 2:30-3:30

  报告地点:计算所446室

  主讲人: Kai Chen, Professor,Institute of Information Engineering, CAS

  报告摘要:

  It is reported recently that legitimate libraries are repackaged for propagating malware. An in-depth analysis of such potentially-harmful libraries (PhaLibs), however, has never been done before, due to the challenges in identifying those libraries whose code can be unavailable online. In this talk, we show that through effective analysis of over a million Android apps, previously unknown PHAs can be detected within a few seconds, without resorting to conventional Anti-Virus means such as signatures and behavior patterns. Also, we made the first in-depth analysis on potentially-harmful libraries (PhaLibs) on mobile platforms, especially iOS platform, which has never been done before due to the challenges in identifying those libraries whose code can be unavailable online and no publicly available anti-virus (AV) systems for detecting iOS PHAs.

  We also demonstrate how to capture PHAs on the communication service provider (CSP, including carriers and ISPs) level. A CSP-level scan faces an enormous challenge: hundreds of millions of apps are installed everyday; retaining their download traffic to construct their packages entails a huge burden on the CSP side. In this talk, we present an innovative “app baleen” (called Abaleen) framework to solve this problem, for an on-line security vetting of an extremely large number of app downloads.

  主讲人简介:

  Dr. Kai Chen is a professor in Institute of Information Engineering, Chinese Academy of Sciences. He received his Ph.D. in University of Chinese Academy of Sciences in 2010, and has since then joined Chinese Academy of Sciences as a faculty member. His work focuses on system and software security, and privacy. He has been publishing high-impact research across top security/SE venues like IEEE S&P, USENIX Security, ACM CCS, ICSE, ASE, RAID, DSN, MobiSys, TRE. His work frequently receives attention from media, including CNN, Threatpost, SCMagazine, etc.

 
网站地图 | 联系我们 | 意见反馈 | 所长信箱
 
京ICP备05002829号 京公网安备1101080060号