A Novel Machine Learning Approach for Android Malware Detection Based on the Co-Existence of Features

Odat, Esraa; Yaseen, Qussai

doi:10.1109/access.2023.3244656

Cited by 22 publications

(3 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this method, each decision tree is created according to the dependency relationships of the data samples [38]. It uses the averaging method to increase the accuracy and prevent overfitting [39].…”

Section: Classification Algorithmsmentioning

confidence: 99%

Hyperparameter Tunning and Feature Selection Methods for Malware Detection

KAVALCI YILMAZ,

BAKIR

2024

Politeknik Dergisi

View full text Add to dashboard Cite

Smartphones have started to take an essential place in every aspect of our lives with the developing technology. All kinds of transactions, from daily routine work to business meetings, payments, and personal transactions, started to be done via smartphones. Therefore, there is a significant amount of very important user information stored in these devices which makes them a target for malware developers. For these reasons, machine learning (ML) methods have been used to detect malicious software on android devices quickly and reliably. In this study, a machine learning-based Android malware detection system has been developed, optimized, and tested. To this end, firstly, the data in the dataset has been balanced with 3 different methods namely SMOTE, SMOTETomek and ClusterCentroids. Afterward, the obtained results have been tried to be optimized by using different feature selection approaches including mRMR, Mutual Information, Select From Model, and Select k Best. Finally, the most two successful methods from the five tested ML algorithms (i.e. RF, SVM, LR, XGBoost, and ETC) have been tuned using GridSearch, Random Search, and Bayesian Optimization algorithms in order to investigate the effects of hyperparameter tuning on the performance of ML algorithms.

show abstract

Section: Classification Algorithmsmentioning

confidence: 99%

Hyperparameter Tunning and Feature Selection Methods for Malware Detection

KAVALCI YILMAZ,

BAKIR

2024

Politeknik Dergisi

View full text Add to dashboard Cite

show abstract

“…The malware is commonly determined by four main groups such as hardware, kernel, hardware abstraction layer as well as application-based attacks [6]. This malware causes a number of material as well as non-material damages named unauthorized action on behalf of users, collection of significant information from users, damaging the device hardware [7].…”

Section: Introductionmentioning

confidence: 99%

Feature Selection Using Adaptive Weight Based Grey Wolf Optimization for Malware Detection in Android

2024

IJIES

View full text Add to dashboard Cite

The malware application is one of the most dangerous threats to various applications, particularly in Android devices. To effectively detect the malware in Android, the existing researchers utilized the Machine Learning (ML) approaches. However, the researchers have not accurately detected the malware due to the malware complexity, continuous changes as well as increased damages caused by attackers. In this paper, an Adaptive Weight based Grey Wolf Optimization (AWGWO) based feature selection is proposed for malware detection in Android. The proposed AWGWO is evaluated by using Drebin and CICInvesAndMal2019 dataset which contains 216 and 428 malware features. Then, the acquired dataset is pre-processed by utilizing the Min-Max normalization technique to remove the computational complexity and achieve minimum error rates. In the classification stage, a voting combination of benign and malignant malware is used while utilizing three ensemble ML approaches. The ensemble approaches involve a Support Vector Machine (SVM), Random Forest (RF) and AdaBoost algorithm. The proposed AWGWO method achieves better results by using evaluation metrics like accuracy, precision, recall, and F1-score of 0.9953, 0.9930, 0.9963, and 0.9725 respectively which is comparatively better than the existing methods named Random Forest-OWL (RF-OWL), SVM, Adjacency Matrix (AdMat) and Effective Feature selection -RF (EF-RF).

show abstract

“…Several studies have been carried out to explore the use of DL in AM detection. In [4], the DL-based methods based on permission patterns and API calls were developed for AM detection. In the same way, the research work in [5] used DL approaches to evaluate static and dynamic characteristics of Android applications and attained high identification accuracy.…”

Section: Introductionmentioning

confidence: 99%

AMDDLmodel: Android smartphones malware detection using deep learning model

Aamir,

Iqbal,

Nosheen

et al. 2024

PLoS ONE

View full text Add to dashboard Cite

Android is the most popular operating system of the latest mobile smart devices. With this operating system, many Android applications have been developed and become an essential part of our daily lives. Unfortunately, different kinds of Android malware have also been generated with these applications’ endless stream and somehow installed during the API calls, permission granted and extra packages installation and badly affected the system security rules to harm the system. Therefore, it is compulsory to detect and classify the android malware to save the user’s privacy to avoid maximum damages. Many research has already been developed on the different techniques related to android malware detection and classification. In this work, we present AMDDLmodel a deep learning technique that consists of a convolutional neural network. This model works based on different parameters, filter sizes, number of epochs, learning rates, and layers to detect and classify the android malware. The Drebin dataset consisting of 215 features was used for this model evaluation. The model shows an accuracy value of 99.92%. The other statistical values are precision, recall, and F1-score. AMDDLmodel introduces innovative deep learning for Android malware detection, enhancing accuracy and practical user security through inventive feature engineering and comprehensive performance evaluation. The AMDDLmodel shows the highest accuracy values as compared to the existing techniques.

show abstract

A Novel Machine Learning Approach for Android Malware Detection Based on the Co-Existence of Features

Cited by 22 publications

References 23 publications

Hyperparameter Tunning and Feature Selection Methods for Malware Detection

Hyperparameter Tunning and Feature Selection Methods for Malware Detection

Feature Selection Using Adaptive Weight Based Grey Wolf Optimization for Malware Detection in Android

AMDDLmodel: Android smartphones malware detection using deep learning model

Contact Info

Product

Resources

About