A Comparative Analysis of Android Malware

Neeraj Chavan, Fabio Di Troia, Mark Stamp

2019

Abstract

In this paper, we present a comparative analysis of benign and malicious Android applications, based on static features. In particular, we focus our attention on the permissions requested by an application. We consider both binary classification of malware versus benign, as well as the multiclass problem, where we classify malware samples into their respective families. Our experiments are based on substantial malware datasets and we employ a wide variety of machine learning techniques, including decision trees and random forests, support vector machines, logistic model trees, AdaBoost, and artificial neural networks. We find that permissions are a strong feature and that by careful feature engineering, we can significantly reduce the number of features needed for highly accurate detection and classification.

Download


Paper Citation


in Harvard Style

Chavan N., Di Troia F. and Stamp M. (2019). A Comparative Analysis of Android Malware.In Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ForSE, ISBN 978-989-758-359-9, pages 664-673. DOI: 10.5220/0007701506640673


in Bibtex Style

@conference{forse19,
author={Neeraj Chavan and Fabio Di Troia and Mark Stamp},
title={A Comparative Analysis of Android Malware},
booktitle={Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ForSE,},
year={2019},
pages={664-673},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007701506640673},
isbn={978-989-758-359-9},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ForSE,
TI - A Comparative Analysis of Android Malware
SN - 978-989-758-359-9
AU - Chavan N.
AU - Di Troia F.
AU - Stamp M.
PY - 2019
SP - 664
EP - 673
DO - 10.5220/0007701506640673