Effective detection of android malware based on the usage of data flow APIs and machine learning

被引:64
|
作者
Wu, Songyang [1 ]
Wang, Pan [1 ]
Li, Xun [1 ]
Zhang, Yong [1 ]
机构
[1] Minist Publ Secur, Res Inst 3, Shanghai 201204, Peoples R China
基金
中国国家自然科学基金;
关键词
Android security; Malware detection; Privacy leakage;
D O I
10.1016/j.infsof.2016.03.004
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Context. Android has been ranked as the top smartphone platform nowadays. Studies show that Android malware have increased dramatically and that personal privacy theft has become a major form of attack in recent years. These critical security circumstances have generated a strong interest in developing systems that automatically detect malicious behaviour in Android applications (apps). However, most methods of detecting sensitive data leakage have certain shortcomings, including computational expensiveness and false positives. Objective. This study proposes an Android malware detecting system that provides highly accurate classification and efficient sensitive data transmission analysis. Method. The study adopts a machine learning approach that leverages the use of dataflow application program interfaces (APIs) as classification features to detect Android malware. We conduct a thorough analysis to extract dataflow-related API-level features and improve the k-nearest neighbour classification model. The dataflow-related API list is further optimized through machine learning, which enables us to improve considerably the efficiency of sensitive data transmission analysis, whereas analytical accuracy is approximated to that of the experiment using a full dataflow-related API list. Results. The proposed scheme is evaluated using 1160 benign and 1050 malicious samples. Results show that the system can achieve an accuracy rate of as high as 97.66% in detecting unknown Android malware. Our experiment of static dataflow analysis shows that more than 85% of sensitive data transmission paths can be determined using the refined API subset, whereas time of analysis decreases by nearly 40%. Conclusion. The usage of dataflow-related APIs is a valid feature for identifying Android malware. The proposed scheme provides an efficient approach to detecting Android malware and investigating privacy violations in malicious apps. (C) 2016 Elsevier B.V. All rights reserved.
引用
收藏
页码:17 / 25
页数:9
相关论文
共 50 条
  • [1] Effective and Explainable Detection of Android Malware Based on Machine Learning Algorithms
    Kumar, Rajesh
    Zhang Xiaosong
    Khan, Riaz Ullah
    Kumar, Jay
    Ahad, Ijaz
    [J]. PROCEEDINGS OF 2018 INTERNATIONAL CONFERENCE ON COMPUTING AND ARTIFICIAL INTELLIGENCE (ICCAI 2018), 2018, : 35 - 40
  • [2] Android Malware Detection Based on Machine Learning
    Wang, Qing-Fei
    Fang, Xiang
    [J]. 2018 4TH ANNUAL INTERNATIONAL CONFERENCE ON NETWORK AND INFORMATION SYSTEMS FOR COMPUTERS (ICNISC 2018), 2018, : 434 - 436
  • [3] An Android Malware Detection System Based on Machine Learning
    Wen, Long
    Yu, Haiyang
    [J]. GREEN ENERGY AND SUSTAINABLE DEVELOPMENT I, 2017, 1864
  • [4] Efficient and Effective Static Android Malware Detection Using Machine Learning
    Bansal, Vidhi
    Ghosh, Mohona
    Baliyan, Niyati
    [J]. INFORMATION SYSTEMS SECURITY, ICISS 2022, 2022, 13784 : 103 - 118
  • [5] Study on Android Hybrid Malware Detection Based on Machine Learning
    Kuo, Wen-Chung
    Liu, Tsung-Ping
    Wang, Chun-Cheng
    [J]. 2019 IEEE 4TH INTERNATIONAL CONFERENCE ON COMPUTER AND COMMUNICATION SYSTEMS (ICCCS 2019), 2019, : 31 - 35
  • [6] A Review of Android Malware Detection Approaches Based on Machine Learning
    Liu, Kaijun
    Xu, Shengwei
    Xu, Guoai
    Zhang, Miao
    Sun, Dawei
    Liu, Haifeng
    [J]. IEEE ACCESS, 2020, 8 (08): : 124579 - 124607
  • [7] An Android Malware Detection Leveraging Machine Learning
    Shatnawi, Ahmed S.
    Jaradat, Aya
    Yaseen, Tuqa Bani
    Taqieddin, Eyad
    Al-Ayyoub, Mahmoud
    Mustafa, Dheya
    [J]. WIRELESS COMMUNICATIONS & MOBILE COMPUTING, 2022, 2022
  • [8] Android Malware Detection Using Machine Learning
    Droos, Ayat
    Al-Mahadeen, Awss
    Al-Harasis, Tasnim
    Al-Attar, Rama
    Ababneh, Mohammad
    [J]. 2022 13TH INTERNATIONAL CONFERENCE ON INFORMATION AND COMMUNICATION SYSTEMS (ICICS), 2022, : 36 - 41
  • [9] A Combination Method for Android Malware Detection Based on Control Flow Graphs and Machine Learning Algorithms
    Ma, Zhuo
    Ge, Haoran
    Liu, Yang
    Zhao, Meng
    Ma, Jianfeng
    [J]. IEEE ACCESS, 2019, 7 : 21235 - 21245
  • [10] A Survey of Android Malware Static Detection Technology Based on Machine Learning
    Wu, Qing
    Zhu, Xueling
    Liu, Bo
    [J]. MOBILE INFORMATION SYSTEMS, 2021, 2021