| Authors: | Damopoulos D., Kambourakis G., Portokalidis G. |
|---|
| Title: | The Best of Both Worlds. A Framework for the Synergistic Operation of Host and Cloud Anomaly-based IDS for Smartphones |
|---|
| Conference: | The 7th European Workshop on Systems Security (EuroSec) |
|---|
| Editors: | |
|---|
| Ed: | No |
|---|
| Eds: | No |
|---|
| Pages: | |
|---|
| To appear: | No |
|---|
| Month: | April |
|---|
| Year: | 2014 |
|---|
| Place: | Amsterdam, The Netherlands |
|---|
| Pubisher: | ACM Press |
|---|
| Link: | http://www.syssec-project.eu/eurosec-2014/ |
|---|
| File name: | IDS_Final_doi-1.pdf##^^&&825420074.pdf |
|---|
| Abstract: | Smartphone ownership and usage has seen massive growth in the past years. As a result, their users have attracted unwanted attention from malicious entities and face many security challenges, including malware and privacy issues. This paper concentrates on IDS carefully designed to cater to the security needs of modern mobile
platforms. Two main research issues are tackled: (a) the definition of an architecture which can be used towards implementing and deploying such a system in a dual-mode (host/cloud) manner and irrespectively of the underlying platform, and (b) the evaluation of a proof-of-concept anomaly-based IDS implementation that incorporates dissimilar detection features, with the aim to assess its performance qualities when running on state-of-the-art mobile hardware on the host device and on the cloud. This approach allow us to argue in favor of a hybrid host/cloud IDS arrangement (as it assembles the best characteristics of both worlds) and to provide
quantitative evaluation facts on if and in which cases machine learning-driven detection is affordable when executed on-device. |
|---|
Greek