AntiWare: An Automated Android Malware Detection Tool based on Machine Learning Approach and Official Market Metadata

2016-10-22
Akhuseyinoglu, Nuray Baltaci
Akhuseyinoglu, Kamil
The prevalence of mobile devices has increased rapidly in recent years. People store valuable data like personal and financial information on those devices. In addition, applying "bring your own device (BYOD)" policy in companies has become popular. Hence, mobile devices are also source of valuable and confidential company information. Accordingly, there is a growing need for malware detection methods and tools to protection mobile devices against attacks targeting them. In this study, an automated feature-based static analysis method is applied to detect malicious mobile applications on Android devices. By utilizing the metadata of applications on the official market and an online free malware scanner, the feasibility of a mobile malware detection model using free public sources and having quite acceptable accuracy rates is shown. As opposed to previous studies considering only the requested permissions as feature set, additional market metadata including but not limited to application category, download number, developer name, and average rating are included in the analysis as the feature set for training supervised classification algorithms. Based on an experimental evaluation of the majority voting of antivirus (AV) engines on the free online AV community, applications in the training set are labeled as malicious or benign. Naive Bayes classification algorithm is chosen as supervised learning algorithm for the detection task. In addition, as filter-based algorithms, Chi-Square, Information Gain and ReliefF feature selection methods are used for overcoming potential overfitting problems. Finally, a quick prototype for showing the feasibility of the detection model is demonstrated with sample case applications.

Suggestions

The Analysis of Feature Selection Methods and Classification Algorithms in Permission Based Android Malware Detection
Pehlivan, Ugur; Baltaci, Nuray; Acartürk, Cengiz; Baykal, Nazife (2014-12-12)
Android mobile devices have reached a widespread use since the past decade, thus leading to an increase in the number and variety of applications on the market. However, from the perspective of information security, the user control of sensitive information has been shadowed by the fast development and rich variety of the applications. In the recent state of the art, users are subject to responding numerous requests for permission about using their private data to be able run an application. The awareness o...
GUI testing of android applications: a systematic mapping
Aydın, Muzaffer; Betin Can, Aysu; Garousi, Vahid; Department of Information Systems (2014)
Popularity of mobile devices is increasing rapidly all around the world. These devices can be used on various systems which are commonly used by the society. These systems are predicted to overtake desktop platform's popularity in the near future. Therefore the quality of mobile applications has vital importance. High quality applications can only be developed with good testing environments. Considering that multi-featured mobile applications have complex user interfaces, we decided to focus on graphical us...
A Software quality model for android applications
Şimşek, Merve Vildan; Betin Can, Aysu; Department of Information Systems (2016)
Nowadays mobile devices have become increasingly widespread. It causes mobile applications number to grow dramatically. As the popularity of these systems is predicted to continue its increase in the near future, the importance of the quality of mobile applications increases. The aim of this study is to present a quality model for Android applications. We chose applications developed for Android Operating System as our target because of its prevalence in the mobile market. To achieve the aim of the study, w...
Context-awareness in ubiquitous computing and the mobile devices
Akcit, Nuhcan; Tomur, Emrah; Karslıoğlu, Mahmut Onur (2015-03-19)
Mobile device use has vastly increased in the last few years. Many people use many mobile devices in their daily lives. Context-aware computing is the main feature of pervasive and ubiquitous computing. Context awareness is also an important topic that becomes more available with ubiquitous computing. As the sensors increase, the data collected via mobile device sensors and sensor networks do not have much value because of the difficulty in analysis and understanding the data. Context-aware computing helps ...
NFC feature box: an open, nfc enabler independent mobile payment and identification method
Türk, İsmai; Kesim Çiçekli, Nihan.; Department of Computer Engineering (2019)
The use of Mobile Devices for electronic payment has increased significantly in the last decade. Near Field Communication (NFC) mobile payment is gaining popularity and it is widely considered to be the technology that will turn smartphones into m-wallets. While a typical wallet contains identification, loyalty, public transport and credit cards, m-wallet solutions currently have well-defined standards for credit card enrollment and usage only. In this thesis, we explore and present the main reason for this...
Citation Formats
N. B. Akhuseyinoglu and K. Akhuseyinoglu, “AntiWare: An Automated Android Malware Detection Tool based on Machine Learning Approach and Official Market Metadata,” 2016, p. 0, Accessed: 00, 2020. [Online]. Available: https://hdl.handle.net/11511/64904.