The application discloses a dynamic alarm method and terminal for malicious behavior of application software, which relates to the field of terminal security, and is used to dynamically adjust the alarm for malicious behavior of application software. This method includes: the terminal monitors the behavior of the application software calling the key function; the terminal generates the behavior vector according to the number of times that the application software calls the key function in the preset time; the terminal inputs the behavior vector into the malicious behavior model based on the machine learning algorithm to get the result vector of the application software; the terminal's malicious behavior type whose threat level is greater than or equal to the alarm threshold Generate alarm information; terminal prompts alarm information; terminal obtains the first feedback information of the user for the alarm information; terminal maintains the alarm threshold corresponding to the malicious behavior type according to the first feedback information; terminal obtains the second feedback information of the user for the alarm information; terminal improves the alarm threshold corresponding to the malicious behavior type according to the second feedback information. The embodiment of the application is used for alerting malware.
【技术实现步骤摘要】
【国外来华专利技术】PCT国内申请,说明书已公开。
【技术保护点】
PCT国内申请,权利要求书已公开。
【技术特征摘要】
【国外来华专利技术】2017.11....
【专利技术属性】
技术研发人员:林子敏,刘艺锋,袁中举,
申请(专利权)人:华为技术有限公司,
类型:发明
国别省市:广东,44
还没有人留言评论。发表了对其他浏览者有用的留言会获得科技券。