File(s) under permanent embargo
Keep calm and know where to focus: measuring and predicting the impact of Android Malware
Version 2 2024-06-06, 00:31Version 2 2024-06-06, 00:31
Version 1 2019-01-18, 09:20Version 1 2019-01-18, 09:20
conference contribution
posted on 2024-06-06, 00:31 authored by J Qiu, Wei LuoWei Luo, S Nepal, Jun Zhang, Y Xiang, Lei PanLei Pan© 2018, Springer Nature Switzerland AG. Android malware can pose serious security threat to the mobile users. With the rapid growth in malware programs, categorical isolation of malware is no longer satisfactory for security risk management. It is more pragmatic to focus the limited resources on identifying the small fraction of malware programs of high security impact. In this paper, we define a new research issue of measuring and predicting the impact of the detected Android malware. To address this issue, we first propose two metrics to isolate the high impact Android malware programs from the low impact ones. With the proposed metrics, we created a new research dataset including high impact and low impact Android malware samples. The dataset allows us to empirically discover the driving factors for the high malware impact. To characterize the differences between high impact and low impact Android malware, we leverage features from two sources available in every Android application. (1) the readily available AndroidManifest.xml file and (2) the disassembled code from the compiled binary. From these characteristics, we trained a highly accurate classifier to identify high impact Android malware. The experimental results show that our proposed method is feasible and has great potential in predicting the impact of Android malware in general.
History
Volume
11323Pagination
238-254Location
Nanjing, ChinaPublisher DOI
Start date
2018-11-16End date
2018-11-18ISSN
0302-9743eISSN
1611-3349ISBN-13
9783030050894Language
engPublication classification
E1 Full written paper - refereedCopyright notice
2018, Springer Nature Switzerland AGEditor/Contributor(s)
Gan G, Li B, Li X, Wang STitle of proceedings
ADMA 2018: Proceedings of the 14th International Conference on Advanced Data Mining and ApplicationsEvent
Advanced Data Mining and Applications. International Conference (14th : 2018 : Nanjing, China)Publisher
SpringerPlace of publication
Cham, SwitzerlandSeries
Lecture Notes in Computer ScienceUsage metrics
Categories
No categories selectedLicence
Exports
RefWorksRefWorks
BibTeXBibTeX
Ref. managerRef. manager
EndnoteEndnote
DataCiteDataCite
NLMNLM
DCDC