Volume 9 - Issue 3
Situational Awareness Framework for Threat Intelligence Measurement of Android Malware
- Mookyu Park
School of Information Security, Korea University 145, Anam-ro, Seongbuk-gu, Seoul, Republic of Korea
ctupmk@korea.ac.kr
- Junwoo Seo
School of Information Security, Korea University 145, Anam-ro, Seongbuk-gu, Seoul, Republic of Korea
junuseo@korea.ac.kr
- Jaehyeok Han
School of Information Security, Korea University 145, Anam-ro, Seongbuk-gu, Seoul, Republic of Korea
one01h@korea.ac.kr
- Haengrok Oh
Agency for Defense Development(ADD) 460, Ogeum-ro, Songpa-gu, Seoul, Republic of Korea
haengrok@add.re.kr
- Kyungho Lee
School of Information Security, Korea University 145, Anam-ro, Seongbuk-gu, Seoul, Republic of Korea
kevinlee@korea.ac.kr
Keywords: Situational Awareness, Threat Intelligence, Android Malware, Threat Measurement
Abstract
With the development of the Internet of Things (IoT) technology, various devices are connected to the
network. The availability of mobile devices is increasing to remotely control these electronic products.
As the importance of mobile devices increases, operating systems such as Android OS and iOS
are targeted for cyber attacks. In addition, mobile devices are used to manage business data as well
as private areas, including text messages and contacts, so the risk of attack is also increasing. This
paper proposes threat intelligence evaluation for mobile malware from the viewpoint of situational
awareness by extracting features that can detect Android malware using machine learning algorithms.