Identifying Applications' State via System Calls Activity: A Pipeline Approach

Maasmi, Fatema; Morcos, Martina; Hamadi, Hussam Al; Damiani, Ernesto

doi:10.1109/icecs53924.2021.9665597

Cited by 12 publications

(2 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore capturing and analyzing the system calls produced by applications will provide accurate information about the behavior of that application [22]. Further, in our previous research, we have successfully used system calls to determine whether an Android application is running in the foreground or background using a limited number of system calls as well as lightweight training [23]. For the aforementioned reason, our proposed solution is based on collecting system call traces to analyze app behaviour and train a machine learning model to be able to detect a malign (exfiltration) or benign process.…”

Section: Linux System Callsmentioning

confidence: 99%

An ML-Based Recognizer of Exfiltration Attack over Android Platform: MLGuard

Morcos¹,

Gala²,

Hamadi³

et al. 2023

Preprint

View full text Add to dashboard Cite

<p>As Android smartphones continue to rise in popularity, the number of malicious programs targeting the platform has increased dramatically. Methods for efficiently detecting and preventing the spread of Android malware have become a subject of increasing urgency. The exfiltration of sensitive data from smartphones is one of the sophisticated security threats that need to be addressed. In this paper, we analyzed the 3-grams of system calls, and developed a framework for identifying malicious Android applications that engage in network data exfiltration. Androzoo, a recently made public database, serves as the foundation for our exfiltration dataset. The majority of published works rely on data acquired from Android emulators and user input simulation. As part of our research, we collect data on the behavior of exfiltration attempts only in real-world interaction, as opposed to data from emulators or virtual environments. Using these dynamic variables, we employ cutting-edge machine learning and deep learning classifiers, including Random Forest and deep neural network. It obtains an exfiltration detection accuracy of 98.9 percent using 20s time windows for detection. In addition, we applied our trained model on Android phones and attained minimal latency and high detection accuracy for unknown exfiltration applications.</p>

show abstract

Section: Linux System Callsmentioning

confidence: 99%

An ML-Based Recognizer of Exfiltration Attack over Android Platform: MLGuard

Morcos¹,

Gala²,

Hamadi³

et al. 2023

Preprint

View full text Add to dashboard Cite

show abstract

“…According to Kost [7,84,85,86,87], there are various ways large corporations like Meta could prevent possible…”

Section: B Monitoringmentioning

confidence: 99%

Studying the Metaverse Effect on its Users

Ghazal

Issa

Dmour

et al. 2022

PJETS

View full text Add to dashboard Cite

This research is set to answer the question how Metaverse can be a dangerous space for its users. Metaverse is a collection of Meta applications such as Facebook, Instagram, WhatsApp and Oculus that is integrated into virtual reality (VR) and augmented reality (AR). To answer the question, different issues that were undertaken in the history of Meta and its CEO, Mark Zuckerberg, was taken into account to see the potential negative effects it will have on end-users. The potential issues Metaverse can have includes issues with uneven power distribution, issues with cyber security and privacy threats, and negative impact on the user’s mental health. An interview was conducted and the results supported the prior claims, with an emphasis on the dangers of lack of security and privacy leaks and breaches, followed by mental health concerns, then lack of regulations, followed by spread of misinformation and abuse of power. The solutions to these issues consisted of adding and adopting better regulations, integrating a monitoring system, and including a function for tracking and limiting end-user’s screentime. Alas, technology and the internet are ever-changing and needs constant evaluation and regulations, especially if it is from a big tech-company such as Meta. A company is useless without its customers, so keeping them safe should always be a top priority.

show abstract