Analysis of Bayesian classification-based approaches for Android malware detection

IET Information Security

Volumn 8, Issue 1, 2014, Pages 25-36

  Yerima, Suleiman Y ^a   Sezer, Sakir ^a   McWilliams, Gavin ^a  

^a QUEEN'S UNIVERSITY BELFAST   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

ANDROID MALWARE; BAYESIAN CLASSIFICATION; COMPARATIVE ANALYSIS; CRITICAL ISSUES; CURRENT DETECTION; DETECTION CAPABILITY; MACHINE-LEARNING; MOBILE PLATFORM;

COMPUTER CRIME; ROBOTS;

STATIC ANALYSIS;

EID: 84890742606     PISSN: 17518709     EISSN: 17518717     Source Type: Journal    
DOI: 10.1049/iet-ifs.2013.0095     Document Type: Article

References (35)

1. http://www.theregister.co.uk/2012/09/26/google-play-25bn-downloads/, Accessed June 2013
2. Apvrille, A., Strazzere, T.: 'Reducing the window of opportunity for Android malware Gotta catch'em all', J. Comput. Virol., 2012, 8, (1-2), pp. 61-71
3. Zhou, Y., Jiang, X.: 'Dissecting android malware: Characterization and evolution'. Proc. IEEE Symp. Security and Privacy (SP), San Francisco, CA, USA, May 2012, pp. 95-109
4. Oberheide, J., Miller, C.: 'Dissecting the android bouncer'. SummerCon 2012, Brooklyn, NY, USA, June 2012
5. Oberheide, J., Cooke, E., Jahanian, F.: 'Cloudav: N-version antivirus in the network cloud'. Proc. 17th USENIX Security Symposium (Security '08), July 2008, pp. 91-106
6. Bose, A., Hu, X., Shin, K.G., Park, T.: 'Behavioral detection of malware on mobile handsets'. Proc. Sixth Int. Conf. Mobile Systems, Applications and Services (MobiSys '08) ACM, Breckenridge, CO, USA, June 2008, pp. 225-238
7. Burguera, I., Zurutuza, U., Nadjm-Tehrani, S.: 'Crowdroid: Behavior-based malware detection system for Android'. Proc. First ACM Workshop on Security and Privacy in Smartphones and Mobile devices (SPSM '11), New York, NY, USA, 2011, pp. 15-26
8. Schmidt, A.-D., Peters, F., Lamour, F., Albayrak, S.: 'Monitoring smartphones for anomaly detection'. Proc. Int. Conf. Mobile Wireless Middleware, Operating Systems, and Applications (MOBILWARE 2008), Innsbruck, Austria, February 2008
9. Chin, E., Felt, A.P., Greenwood, K., Wagner, D.: 'Analyzing inter-application communication in Android'. Proc. Ninth Int. Conf. Mobile Systems, Applications, and Services (MobiSys '11). ACM, Washington, DC, USA, June 2011, pp. 239-252
10. Chan, P.P.F., Hui, L.C.K., Yiu, S.M.: 'DroidChecker: Analyzing android applications for capability leak'. Proc. Fifth ACM Conf. Security and Privacy in Wireless and Mobile Networks (WISEC '12), Tucson, AZ, USA, April 2012, pp. 125-136
11. Wei, X., Gomez, L., Neamtiu, I., Faloutsos, M.: 'ProfileDroid: Multi-layer profiling of android applications'. Proc. 18th Int. Conf. Mobile Computing and Networking (Mobicom '12). ACM, Istanbul, Turkey, August 2012, pp. 137-148
12. Grace, M., Zhou, Y., Zhang, Q., Zou, S., Jiang, X.: 'RiskRanker: Scalable and accurate zero-day android malware detection'. Proc. Tenth Int. Conf. Mobile Systems, Applications, and Services (MobiSys '12) ACM, Low Wood Bay, Lake District, UK, June 2012, pp. 281-294
13. Batyuk, L., Herpich, M., Camtepe, S.A., Raddatz, K., Schmidt, A., Albayrak, S.: 'Using static analysis for automatic assessment and mitigation of unwanted and malicious activities within Android applications'. Sixth Int. Conf. Malicious and Unwanted Software (MALWARE 2011), Fajardo, PR, USA, October 2011, pp. 66-72
14. Kim, J., Yoon, Y., Yi, K., Shin, J.: 'SCANDAL: Static analyzer for detecting privacy leaks in Android applications'. Mobile Security Technologies, MoST 2012, San Francisco, May 2012
15. Gibler, C., Crussell, J., Erickson, J., Chen, H.: 'AndroidLeaks: Automatically detecting potential privacy leaks in Android applications on a large scale'. Proc. Fifth Int. Conf. Trust and Trustworthy Computing (TRUST 2012), Vienna, Austria, June 2012, pp. 291-307
16. Mann, C., Starostin, A.: 'A framework for static detection of privacy leaks in android applications'. Proc. 27th Annual ACM Symp. Applied Computing (SAC'12), Trento, Italy, March 2012, pp. 1457-1462
17. Bläsing, T., Batyuk, L., Schmidt, A.-D., Camtepe, S.A., Albayrak, S.: 'An Android application sandbox system for suspicious software detection'. Fifth Int. Conf. Malicious and Unwanted Software (MALWARE 2010), Nancy, France, October 2010, pp. 55-62
18. Schmidt, A.-D., Bye, R., Schmidt, H.-G., et al.: 'Static analysis of executables for collaborative malware detection on android'. IEEE Int. Conf. Communications (ICC '09), Dresden, Germany, June 2009, pp. 1-5
19. Schultz, M.G., Eskin, E., Zadok, E., Stolfo, S.J.: 'Data mining methods for detection of new malicious executables'. Proc. 2001 IEEE Symposium on Security and Privacy (SP '01), Oakland, CA, USA, May 2001, pp. 38-49
20. Wang, T.-Y., Wu, C.-H., Hsieh, C.-C.: 'A virus prevention model based on static analysis and data mining methods'. Proc. IEEE Eighth Int. Conf. Computer and Information Technology Workshops, Sydney, July 2008, pp. 288-293
21. Santos, I., Brezo, F., Sanz, B., Laorden, C., Bringas, P.G.: 'Using opcode sequences in single-class learning to detect unknown malware', IET Inf. Secur., 2011, 5, (4), pp. 220-227
22. Sahs, J., Khan, L.: 'A machine learning approach to Android malware detection'. Proc. European Intelligence and Security Informatics Conf., Odense, Denmark, August 2012, pp. 141-147
23. Sanz, B., Santos, I., Laorden, C., Ugarte-Pedro, X., Bringas, P.G., Alvarez, G.: 'PUMA: Permission usage to detect malware in Android'. Int. Joint Conf. CISIS'12-ICEUTÉ12-SOCÓ12 Special Sessions, in Advances in Intelligent Systems and Computing, Vol. 189, pp. 289-298
24. Android Application Fundamentals: Http://developer.android.com/guide/ components/fundamentals.html, Accessed June 2013
25. Baksmali: Http://code.google.com/p/smali, Accessed June 2013
26. Muttik, I.: 'Malware mining'. Proc. 21st Virus Bulletin Int. Conf., VB2011, Barcelona, Spain, 5-7 October 2011
27. Cover, T.M., Thomas, J.A.: 'Elements of information theory' (Wiley, 1991)
28. Enck, W., Ongtang, M., McDaniel, P.: 'On lightweight mobile phone application certification'. Proc. 16th ACM Conf. Computer and Communications Security (CCS '09), Chicago, IL, USA, November 2009, pp. 235-245
29. Castillo, C.A.: 'Android malware past, present, and future'. McAfee White Paper, 2011, Accessed June 2013 http://www.mcafee.com/us/resources/white- papers/wp-android-malware-past-present-future.pdf
30. Strazzere, T.: 'LeNa technical tear down'. Accessed June 2013, https://blog.lookout.com/wp-content/uploads/2011/10/LeNa-Legacy-Native-Teardown- Lookout-Mobile-Security1.pdf
31. Contagio mobile. http://contagiominidump.blogspot.com/, Accessed June 2013
32. Andoid Malware Genome Project: Http://www.malgenomeproject.org/, Accessed June 2013
33. Dong-Jie, W., Ching-Hao, M., Te-En, W., Hahn-Ming, L., Kuo-Ping, W.: 'DroidMat: Android malware detection through manifest and API calls tracing'. Proc. Seventh Asia Joint Conf. Information Security (Asia JCIS), 2012, pp. 62-69
34. Peng, H., Gates, C., Sarma, B., et al.: 'Using probabilistic generative models for ranking risks of android apps'. Proc. 19th ACM Conf. Computer and Communications Security (CCS 2012), Raleigh, NC, USA, October 2012, pp. 241-252
35. Sarma, B., Gates, C., Li, N., Potharaju, R., Nita-Rotaru, C., Molloy, I.: 'Android permissions: A perspective combining risks and benefits'. Proc. 17th ACM Symp. Access Control Models and Technologies (SACMAT '12), June 2012, pp. 13-22