发布时间:2017-12-04 浏览量:1988

12月11日(上午):More semantics more robustness: improving Android malware classifiers


报告题目:More semantics more robustness: improving Android malware classifiers

报告人:陈炜 研究员(英国爱丁堡大学信息学院)








Smart phones are becoming more and more popular. With the growth ofmobile apps mobile security is attracting attentions from industriesand academics. From 2011 more and more Android malware instances areidentified, studied, and organized into around 200 malware families.These malware instances often steal personal information or sendpremium SMS messages. Some of them are able to eavesdrop end users.The challenging problem is to develop effective and robust tools toautomatically detect new malware by exploiting behaviour ofidentified malware.  Machine learning based malwareclassifiers often perform badly on detecting new malware, that is,their robustness is poor. This research takes Android apps asvehicle, investigates popular syntax-based features, somesemantics-based features, and compares performance of classifierscombining popular machine learning methods and these features. Wereveal one important reason affecting the robustness of malwareclassifiers: they do not capture general behavioural patterns ofidentified malware. One conclusion is: by using semantics-basedfeatures which are often hard to compute, i.e., sequences of APIcalls, the robustness of malware classifiers can be improveddramatically.


12月11日(下午):Stochastic Buechi Types for Infinite Traces


报告题目:Stochastic Buechi Types for Infinite Traces

报告人:陈炜 研究员(英国爱丁堡大学信息学院)






 We describe the analysis of distributions of infinite traces generated by programs in a small language which allows stochastic  choices and infinite recursions. This enables one to compute the  accepting probability of infinite traces with respect to properties  specified in Buechi automata by using abstract lattices derived from  Buechi automata. This gives rise to a compositional method that lends itself to a formulation as a type-and-effect system. It also improves on an existing  algorithm by Brazdil et al for model checking probabilistic pushdown automata  in that no determinization of the  Buechi automaton is required. Also in the special case of finite traces which is well understood in the context of model checking of pushdown systems we get a compositional formulation which may be of independent interest.



       陈炜,自2013年起担任英国爱丁堡大学信息学院研究员。南京理工大学学士,清华大学硕士,英国诺丁汉大学博士。曾供职于德国慕尼黑大学信息学院,深圳华为技术有限公司,以及上海贝尔阿尔卡特。主要研究兴趣包括:形式化方法,软件验证,定理证明,类型论,以及计算机安全。目前的主要研究方向为:形式化方法和机器学习在网络安全和移动安全中的应用。主要研究成果为:商类型中的环及其在组合学中的应用(博士论文和MPC 2010),Büchi自动机中的抽象解释(LICS 2014),以及移动应用程序行为分析(iFM 2016和WiSec 2016)。

Brief biography:

       Dr. Wei Chen, a Research Associate in School of Informatics at University of Edinburgh UK since 2013. He graduated from Nanjing University of Science and Technology China, obtained MSc and PhD respectively from Tsinghua University China and University of Nottingham UK. Wei used to work in Institute of Informatics at Ludwig-Maximillian University Munich Germany, Shenzhen Huawei Technology Ltd., and Shanghai Alcatel-Bell Ltd. His main research interest includes: formal methods, software verification, theorem proving, type theory, and computer security. Wei’s current research direction is: applying formal methods and machine learning methods in communication and mobile security. His main research results are: rings in quotient types with its application in combinatorics (PhD thesis and MPC 2010), abstract interpretation from Büchi automata (LICS 2014), and behavioural analysis for mobile apps (iFM 2016 and WiSec 2016).

院长信箱:yuanzhang@sei.ecnu.edu.cn | 办公邮箱:office@sei.ecnu.edu.cn | 院办电话:021-62232550
Copyright Software Engineering Institute