Timed Automata for Mobile Ransomware Detection

Authors

  • Francesco Mercaldo
  • Fabio Martinelli
  • Antonella Santone

DOI:

https://doi.org/10.14279/tuj.eceasst.79.1120

Abstract

Considering the plethora of private and sensitive information stored in smartphone and tablets, it is easy to understand the reason why attackers develop everyday more and more aggressive malicious payloads with the aim to exfiltrate our data. One of the last trend in mobile malware landascape is represented by the so-called ransomware, a threat capable to lock the user interface and to cipher the data of the mobile device under attack. In this paper we propose an approach to model an Android application in terms of timed automaton by considering system call traces i.e., performing a dynamic analysis. We obtain encouraging results in the experimental analysis we performed exploiting real-world  (ransomware and legitimate) Android applications.

Downloads

Published

2021-05-10

How to Cite

[1]
F. Mercaldo, F. Martinelli, and A. Santone, “Timed Automata for Mobile Ransomware Detection”, eceasst, vol. 79, May 2021.