Deakin University
Browse

File(s) under permanent embargo

Keep calm and know where to focus: measuring and predicting the impact of Android Malware

Version 2 2024-06-06, 00:31
Version 1 2019-01-18, 09:20
conference contribution
posted on 2024-06-06, 00:31 authored by J Qiu, Wei LuoWei Luo, S Nepal, Jun Zhang, Y Xiang, Lei PanLei Pan
© 2018, Springer Nature Switzerland AG. Android malware can pose serious security threat to the mobile users. With the rapid growth in malware programs, categorical isolation of malware is no longer satisfactory for security risk management. It is more pragmatic to focus the limited resources on identifying the small fraction of malware programs of high security impact. In this paper, we define a new research issue of measuring and predicting the impact of the detected Android malware. To address this issue, we first propose two metrics to isolate the high impact Android malware programs from the low impact ones. With the proposed metrics, we created a new research dataset including high impact and low impact Android malware samples. The dataset allows us to empirically discover the driving factors for the high malware impact. To characterize the differences between high impact and low impact Android malware, we leverage features from two sources available in every Android application. (1) the readily available AndroidManifest.xml file and (2) the disassembled code from the compiled binary. From these characteristics, we trained a highly accurate classifier to identify high impact Android malware. The experimental results show that our proposed method is feasible and has great potential in predicting the impact of Android malware in general.

History

Volume

11323

Pagination

238-254

Location

Nanjing, China

Start date

2018-11-16

End date

2018-11-18

ISSN

0302-9743

eISSN

1611-3349

ISBN-13

9783030050894

Language

eng

Publication classification

E1 Full written paper - refereed

Copyright notice

2018, Springer Nature Switzerland AG

Editor/Contributor(s)

Gan G, Li B, Li X, Wang S

Title of proceedings

ADMA 2018: Proceedings of the 14th International Conference on Advanced Data Mining and Applications

Event

Advanced Data Mining and Applications. International Conference (14th : 2018 : Nanjing, China)

Publisher

Springer

Place of publication

Cham, Switzerland

Series

Lecture Notes in Computer Science

Usage metrics

    Research Publications

    Categories

    No categories selected

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC