中大機構典藏-NCU Institutional Repository-提供博碩士論文、考古題、期刊論文、研究計畫等下載:Item 987654321/86615
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 80990/80990 (100%)
Visitors : 40249514      Online Users : 160
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: http://ir.lib.ncu.edu.tw/handle/987654321/86615


    Title: 結合多特徵及深度學習擴增技術提升Android小樣本惡意家族分類能力;Effective Android minor malware family detection using multiple feature integration approach and deep learning augmentation technique
    Authors: 邱柏嘉;Chiu, Po-Chia
    Contributors: 資訊管理學系
    Keywords: Android惡意程式分析;多特徵;惡意程式圖像化;惡意家族分類;深度卷積生成對抗網路;卷積神經網路;Android Malware Detection;Multi-feature;Malware Visualization;Malware Family Classification;DCGAN;CNN
    Date: 2021-07-26
    Issue Date: 2021-12-07 13:01:43 (UTC+8)
    Publisher: 國立中央大學
    Abstract: 近幾年的惡意程式檢測技術,憑藉著硬體運算能力的快速增長,利用深度學習技術 檢測惡意程式的研究逐漸增加,且偵測的效果也比傳統技術更加準確,Android 惡意程 式的攻擊手法不斷變化,產生許多不同的攻擊類型,而具有較相似攻擊目標及行為的惡 意程式則被研究人員歸類在同個惡意家族,以利後續分析,但某些惡意家族的樣本數較 少,造成使用深度學習技術來偵測惡意程式的方法無法有效學習這些惡意家族的特徵, 使深度學習技術對於辨識特定惡意程式的效果下降。本研究則試圖改善此一問題,使用 Android 應用程式中的多種特徵——Opcode、API 及 Permission,以不同的前處理方式生 成三個特徵向量,接著將三個特徵向量結合成 RGB 圖像,並使用深度卷積生成對抗網 路(Deep Convolutional Generative Adversarial Network,GAN)擴增少樣本惡意家族中的 樣本,最後輸入至卷積神經網路(Convolutional Neural Network,CNN)進行惡意家族分 類,提升深度學習對少樣本惡意家族的偵測率。實驗結果顯示結合多特徵及深度卷積生 成對抗網路能有效提升深度學習辨識 Android 少樣本惡意家族的能力。;With the continuous changes in malicious attack methods, the imbalanced Android malware family dataset is a big problem, which causes deep learning model cannot effectively learn the features of small families, resulting in decreased effectiveness of malware detection. This research used three static features in Android applications, which are opcode, API and permission, and used different pre-processing methods to generate feature vectors in order to form the RGB image. After RGB images generated, DCGAN (Deep Convolutional Generative Adversarial Network) is used to augment samples of small families, then input them to Convolutional Neural Networks (CNN) for family classification. The experimental results showed that using multi-feature and DCGAN can effectively improve the ability of Convolutional Neural Network (CNN) to identify small families, and the F1-score of small families can be increased between 2%-20%.
    Appears in Collections:[資訊管理研究所] 博碩士論文

    Files in This Item:

    File Description SizeFormat
    index.html0KbHTML53View/Open


    All items in NCUIR are protected by copyright, with all rights reserved.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明