An exploratory study on the evolution of Android malware quality

Mercaldo, Francesco; Sorbo, Andrea Di; Visaggio, Corrado Aaron; Cimitile, A.; Martinelli, Fabio

doi:10.1002/smr.1978

Cited by 18 publications

(8 citation statements)

References 50 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Most of these indicators have been previously investigated in recent work 5 . However, as already reported, we also investigate Android‐oriented metrics, since they model factors which might have a direct influence on the user experience of Android applications 38‐42 . In the following, we describe the meaning and the rationale of each metric.…”

Section: Designmentioning

confidence: 99%

“…5 However, as already reported, we also investigate Android-orientedmetrics, since they model factors which might have a direct influence on the user experience of Android applications. [38][39][40][41][42] In the following, we describe the meaning and the rationale of each metric. In our replication package, we further include a description of the collection process.…”

Section: Code Quality Metricsmentioning

confidence: 99%

See 1 more Smart Citation

Investigating the criticality of user‐reported issues through their relations with app rating

Sorbo

Grano

Visaggio

et al. 2020

J Software Evolu Process

Self Cite

View full text Add to dashboard Cite

App quality impacts user experience and satisfaction. As a consequence, both app ratings and user feedback reported in app reviews are directly influenced by the user-perceived app quality. Through an empirical study involving 210,517 reviews related to 317 Android apps, in this paper, we experiment with the combined usage of app rating and user reviews analysis (i) to investigate the most important factors influencing the perceived app quality, (ii) focusing on the topics discussed in user review that most relate with app rating. Besides, we investigate whether specific code quality metrics could be monitored to prevent the rising of negative user feedback (i.e., types of user review comments), connected with low ratings. Our study demonstrates that user comments reporting bugs are negatively correlated with the rating, while reviews reportingfeature requests do not. Interestingly, depending on the app category, we observed that different kinds of issues have rather different relationships with the rating and the user-perceived quality of the app. In particular, we observe that for specific app categories (e.g., communication), some code quality factors have significant relationships with the raising of certain types of feedback, which, in turn, are negatively connected with app ratings.

show abstract

Section: Designmentioning

confidence: 99%

Section: Code Quality Metricsmentioning

confidence: 99%

Investigating the criticality of user‐reported issues through their relations with app rating

Sorbo

Grano

Visaggio

et al. 2020

J Software Evolu Process

Self Cite

View full text Add to dashboard Cite

show abstract

“…The authors of [9] extract a variety of features from Android malware samples and determine trends based on standard software quality metrics. These results are compared to a similar analysis of trends in Android non-malware, or goodware.…”

Section: Related Workmentioning

confidence: 99%

Word Embedding Techniques for Malware Evolution Detection

Paul¹,

Stamp²

2021

Preprint

View full text Add to dashboard Cite

Malware detection is a critical aspect of information security. One difficulty that arises is that malware often evolves over time. To maintain effective malware detection, it is necessary to determine when malware evolution has occurred so that appropriate countermeasures can be taken. We perform a variety of experiments aimed at detecting points in time where a malware family has likely evolved, and we consider secondary tests designed to confirm that evolution has actually occurred. Several malware families are analyzed, each of which includes a number of samples collected over an extended period of time. Our experiments indicate that improved results are obtained using feature engineering based on word embedding techniques. All of our experiments are based on machine learning models, and hence our evolution detection strategies require minimal human intervention and can easily be automated.

show abstract

“…As presented in Section 5, DoS attacks in 2017 are not as frequent as in 2015 and 2016. This suggests that we could be witnessing a change of trend, which could be caused by a greater ability or interest of the cybercriminals to attack other software weaknesses that were less common in the past [28] . In this sense, the study of the evolution over time of vulnerabilities in software products is another interesting line of work for researchers in this field.…”

Section: Conclusion and Further Workmentioning

confidence: 99%

Software vulnerabilities overview: A descriptive study

Sánchez

Gea

Fernández-Alemán

et al. 2020

Tinshhua Sci. Technol.

View full text Add to dashboard Cite

Computer security is a matter of great interest. In the last decade there have been numerous cases of cybercrime based on the exploitation of software vulnerabilities. This fact has generated a great social concern and a greater importance of computer security as a discipline. In this work, the most important vulnerabilities of recent years are identified, classified, and categorized individually. A measure of the impact of each vulnerability is used to carry out this classification, considering the number of products affected by each vulnerability, as well as its severity. In addition, the categories of vulnerabilities that have the greatest presence are identified. Based on the results obtained in this study, we can understand the consequences of the most common vulnerabilities, which software products are affected, how to counteract these vulnerabilities, and what their current trend is.

show abstract

An exploratory study on the evolution of Android malware quality

Cited by 18 publications

References 50 publications

Investigating the criticality of user‐reported issues through their relations with app rating

Investigating the criticality of user‐reported issues through their relations with app rating

Word Embedding Techniques for Malware Evolution Detection

Software vulnerabilities overview: A descriptive study

Contact Info

Product

Resources

About