Android恶意软件分类基于权限类别使用极端梯度提升

Proceedings of the 5th International Conference on Sustainable Information Engineering and Technology Pub Date : 2020-11-16 DOI:10.1145/3427423.3427427

Togu Novriansyah Turnip, Amsal Situmorang, A. Lumbantobing, Josua Marpaung, S. Situmeang

{"title":"Android恶意软件分类基于权限类别使用极端梯度提升","authors":"Togu Novriansyah Turnip, Amsal Situmorang, A. Lumbantobing, Josua Marpaung, S. Situmeang","doi":"10.1145/3427423.3427427","DOIUrl":null,"url":null,"abstract":"Mobile malware has become the centerpiece of most security and privacy threats on the Internet. Especially with the openness of the Android market, many malicious apps are hiding in a large number of applications, which makes malware detection more challenging. In this study, eXtreme Gradient Boosting (XGBoost) is used to establish the Android-based malware detection and classification framework. The framework utilizes APK permission categories extracted from Android applications. The comparison of modeling results demonstrates that the XGBoost is especially suitable for Android malware classification and can achieve 74.40% of F1-score with real-world Android application sets.","PeriodicalId":120194,"journal":{"name":"Proceedings of the 5th International Conference on Sustainable Information Engineering and Technology","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2020-11-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Android malware classification based on permission categories using extreme gradient boosting\",\"authors\":\"Togu Novriansyah Turnip, Amsal Situmorang, A. Lumbantobing, Josua Marpaung, S. Situmeang\",\"doi\":\"10.1145/3427423.3427427\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Mobile malware has become the centerpiece of most security and privacy threats on the Internet. Especially with the openness of the Android market, many malicious apps are hiding in a large number of applications, which makes malware detection more challenging. In this study, eXtreme Gradient Boosting (XGBoost) is used to establish the Android-based malware detection and classification framework. The framework utilizes APK permission categories extracted from Android applications. The comparison of modeling results demonstrates that the XGBoost is especially suitable for Android malware classification and can achieve 74.40% of F1-score with real-world Android application sets.\",\"PeriodicalId\":120194,\"journal\":{\"name\":\"Proceedings of the 5th International Conference on Sustainable Information Engineering and Technology\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-11-16\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 5th International Conference on Sustainable Information Engineering and Technology\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3427423.3427427\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 5th International Conference on Sustainable Information Engineering and Technology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3427423.3427427","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

移动恶意软件已经成为互联网上大多数安全和隐私威胁的核心。特别是随着Android市场的开放，很多恶意应用隐藏在大量的应用中，这使得恶意软件的检测更具挑战性。本研究采用极限梯度增强(eXtreme Gradient Boosting, XGBoost)技术建立基于android的恶意软件检测与分类框架。该框架利用从Android应用程序中提取的APK权限类别。建模结果对比表明，XGBoost特别适用于Android恶意软件分类，在真实Android应用集上可以达到74.40%的f1得分。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Android malware classification based on permission categories using extreme gradient boosting

Mobile malware has become the centerpiece of most security and privacy threats on the Internet. Especially with the openness of the Android market, many malicious apps are hiding in a large number of applications, which makes malware detection more challenging. In this study, eXtreme Gradient Boosting (XGBoost) is used to establish the Android-based malware detection and classification framework. The framework utilizes APK permission categories extracted from Android applications. The comparison of modeling results demonstrates that the XGBoost is especially suitable for Android malware classification and can achieve 74.40% of F1-score with real-world Android application sets.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 5th International Conference on Sustainable Information Engineering and Technology

自引率

0.00%

发文量