Visible to the public DAIDS: An Architecture for Modular Mobile IDS

TitleDAIDS: An Architecture for Modular Mobile IDS
Publication TypeConference Paper
Year of Publication2014
AuthorsSalman, A., Elhajj, I.H., Chehab, A., Kayssi, A.
Conference NameAdvanced Information Networking and Applications Workshops (WAINA), 2014 28th International Conference on
Date PublishedMay
KeywordsAndroid (operating system), Android platform, Androids, anomaly detection, behavior analysis, behavior profiling, DAIDS, Databases, detection algorithms, Detectors, dynamic analysis, Humanoid robots, Intrusion detection, intrusion detection system, malicious behavior, Malware, mobile computing, mobile devices, mobile radio, modular mobile IDS, Monitoring, North America, profile applications, security of data, telecom operator, third party mobile applications

The popularity of mobile devices and the enormous number of third party mobile applications in the market have naturally lead to several vulnerabilities being identified and abused. This is coupled with the immaturity of intrusion detection system (IDS) technology targeting mobile devices. In this paper we propose a modular host-based IDS framework for mobile devices that uses behavior analysis to profile applications on the Android platform. Anomaly detection can then be used to categorize malicious behavior and alert users. The proposed system accommodates different detection algorithms, and is being tested at a major telecom operator in North America. This paper highlights the architecture, findings, and lessons learned.

Citation Key6844659