Massachusetts Institute of Technology
With the explosive increase in mobile apps, more and more threats migrate from traditional PC client to mobile device. Compared with traditional Win+Intel alliance in PC (Personal Computer), Android+ARM alliance dominates in Mobile Internet, the apps replace the PC client software as the major target of malicious usage. In this paper, to improve the security status of current mobile apps, the authors propose a methodology to evaluate mobile apps based on cloud computing platform and data mining. They also present a prototype system named MobSafe to identify the mobile app's virulence or benignancy. Compared with traditional method, such as permission pattern based method etc., MobSafe combines the dynamic and static analysis method to comprehensively evaluate an Android app.