移动计算环境下恶意软件静态检测系统设计  被引量：1

作　　者：赖修源 

机构地区：[1]成都工业学院经济与管理学院,四川成都611730

出　　处：《现代电子技术》2017年第8期61-64,共4页Modern Electronics Technique

基　　金：国家自然科学基金(11504032);四川省教育厅基金项目:大型综合运动会电子信息管理系统研究与应用(11ZA014)

摘　　要：移动终端在互联网中下载到恶意软件的几率非常高,这对用户信息私密性造成了严重的威胁,但科研组织曾研究出的恶意软件检测系统往往误报率过高、实用性不强。为此,设计移动计算环境下恶意软件静态检测系统,其由特性提取与预处理模块和移动计算终端组成。特性提取与预处理模块根据静态检测特性数据库中的恶意软件标志特性,对用户移动终端软件的安装包特性、资源特性和编译特性进行提取,并使用静态检测函数对提取出的特性进行预处理,给出恶意与非恶意软件的特性分类结果。系统通过移动计算终端对特性分类结果中的恶意软件特性进行位置检测,隔离出用户移动终端中的恶意软件,防止恶意软件继续入侵。经实验分析可知,所设计的系统误报率较低、实用性较强。The probability of malicious software downloaded in Intemet by mobile terminal is very high, whidh can cause a serious threat to user information privacy. The scientific research organization has developed a malware detection system, but its false alarm rate is often too high, and its practicability is poor. Therefore, a static detecting system of malicious software is designed for the mobile computing environment, which is composed of feature extraction and preprocessing module, and mobile computing terminal. The feature extraction and preprocessing module is used to extract the software installation package, re- source characteristic and compiling feature of user＇s mobile terminal according to the malware software marked features in the static detection feature database. The extracted feature is pretreated with static detecting function to give out the classification results of malicious and non-malicious software features. The position of the malicious software is detected by the mobile computing terminal according to malicious software features in the feature classification result. The malicious software in user＇s mobile terminal is isolated to prevent malicious software to make the continuous invasion. The experimental analysis shows that the designed system has low false alarm rate and strong practicability.

关 键 词：移动计算 恶意软件 静态检测系统 用户移动终端 

分 类 号：TP31[自动化与计算机技术—计算机软件与理论] TP309[自动化与计算机技术—计算机科学与技术]