att_abstract={{The rapid growth of mobile malware necessitates the presence of robust malware detectors on mobile devices. However, running malware detectors on mobile devices may drain their battery, causing users to disable these protection mechanisms to save power.  This paper studies the security versus energy tradeoffs for a particularly challenging class of malware detectors, namely rootkit detectors. Specifically, we investigate the security/energy tradeoffs along two axes: attack surface and malware scanning frequency, for both code and data based rootkit detectors. Our findings, based on a real implementation on a phone-like device, reveal that protecting against code-driven attacks is relatively cheap, while protecting against all data-driven attacks is prohibitively expensive. Based on our findings, we determine a sweet spot in the security/energy tradeoff, called the balanced profile, which protects a mobile device against a vast majority of attacks, while consuming limited amount of extra battery power.  }},
	att_authors={hl143p, av8693},
	att_categories={C_NSS.7, A_ST.1, C_NSS.3},
	att_copyright_notice={{(c) ACM, 2011. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in ACM Conference on Mobile Systems, Applications and Services (MobiSys) {{, 2011-06-29}}.}},
	author={Horacio Lagar-cavilla and Alexander Varshavsky and Jeffrey Bickford and Vinod Ganapathy and Liviu Iftode},
	institution={{ACM Conference on Mobile Systems, Applications and Services (MobiSys)}},
	title={{Security versus Energy Tradeoffs in Host-Based Mobile Malware Detection}},