Deep-Layer Clustering to Identify Permission Usage Patterns of Android App Categories

Namrud, Zakeya; Kpodjedo, Sègla; Bali, Ahmed; Talhi, Chamseddine

doi:10.1109/access.2022.3156083

Cited by 9 publications

(3 citation statements)

References 32 publications

(38 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Z Namurd et al [52] used SOM+K-means to identify permission usage patterns. The results show that the observed use patterns by SOM+K-means increase the efficacy of the malware detection model across various apps in different categories.…”

Section: Related Work Based On Machine Learningmentioning

confidence: 99%

ZTA: A Novel Zero Trust Framework for Detection and Prevention of Malicious Android Applications

Nazir,

Iqbal,

Muhammad

2024

Preprint

View full text Add to dashboard Cite

The proliferation of preloaded apps and third-party applications has raised significant concerns regarding user security and privacy. This study introduces the Zero Trust Architecture (ZTA), a novel approach to addressing the issues caused by poorly designed vulnerable mobile applications. ZTA employs a comprehensive strategy to safeguard user privacy, incorporating thorough app permission analysis alongside dynamic behavior assessment. The proposed framework closely monitors real-time app behavior and leverages the MITRE ATT&CK framework to identify security threats, vulnerabilities, and essential Tactics, Techniques, and Procedures (TTPs). The ZTA empowers users to make informed choices about app usage, promote data security, and cultivate a safer environment. Through this framework, users can confidently decide on app usage, ensuring the safeguarding of their data and fostering a more secure mobile app ecosystem. This research presents a proactive approach to privacy-conscious app utilization, bolstering user trust in the continually evolving realm of Android applications.

show abstract

Section: Related Work Based On Machine Learningmentioning

confidence: 99%

ZTA: A Novel Zero Trust Framework for Detection and Prevention of Malicious Android Applications

Nazir,

Iqbal,

Muhammad

2024

Preprint

View full text Add to dashboard Cite

show abstract

“…Malware datasets used Rovelli et al [115] Genome, Contagio Arp et al [116] Genome,FakeInstaller, GoldDream 27 , GingerMaster 28 , DroidKungFu 29 Yerima et al [117] McAfee Kang et al [118] VirusShare, Contagio, Malware.lu Zhao et al [119] Drebin Qiao et al [120] Genome Chen et al [121] 360 APKs 30 , MobiSec Lab Website 31 , [217] Demertzis et al [122] Magnum-Research 32 Verma et al [123] Contagio, malware forums , security blogs, Genome Wang et al [124] VirusTotal Tang et al [125] Genome, Drebin Wang et al [126] Drebin, Genome Li et al [127] Drebin Bhattacharya et al [128] Contagio Xie et al [129] Genome, VirusShare, Drebin Xie et al [130] Genome, VirusShare, Drebin, antivirus companies Ren et al [131] Anzhi, AndroTotal, Drebin Tao et al [132] VirusShare, Contagio Namrud et al [133] AndroZoo Alswaina et al [134] -Qiu et al [135] -Zhu et al [136] ViruShare Feng et al [137] No Malware Aonzo et al [138] AndroZoo Urooj et al [139] MalDroid [225], DefenseDroid 33 and a small own generated dataset Wang et al [140] No malware Wang et al [141] FakeInst, Opfake, FakeInstaller, Droid-KungFu, GinMaster, Plankton Zhang et al [142] No malware Kesswani et al [143] No malware Ibrahim et al [144] CICMalDroid 2020 Arshad et al [145] Drebin Yuan et al [146] Genome, Contagio Zhou et al [147] Genome Cilleruelo et al [148] Malware selected on the basis of lifespan criteria from Google Play Store ...…”

Section: Related Workmentioning

confidence: 99%

A comprehensive review on permissions-based Android malware detection

Sharma,

Arora

2024

Int. J. Inf. Secur.

View full text Add to dashboard Cite

The first Android-ready "G1" phone debuted in late October 2008. Since then, the growth of Android malware has been explosive analogous to the rise in the popularity of Android. The major positive aspect of Android has been its open-source nature, which empowers app developers to expand their work. But at the same time, authors with malicious intentions pose grave threats to users. In the presence of such threats, Android malware detection is the need of an hour. Consequently, researchers have proposed various techniques involving static, dynamic, and hybrid analysis to address such threats using numerous features in the last decade. But the feature that most researchers have extensively used to perform malware analysis and detection in Android security is Android permission. Hence, to provide a clarified overview of the latest and past work done in Android malware analysis and detection, we perform a comprehensive literature review using permissions as a central feature or in combination with other components by collecting and analyzing 200 studies from January 2009 to February 2023. We extracted information such as the choice opted by researchers between analysis or detection, techniques used to select or rank the permissions feature set, features used along with permissions, detection models employed, the malware datasets used by researchers, and lastly, the limitations and challenges in the field of Android malware detection to propose some future research directions. Additionally, based on the information extracted, we answer the six research questions designed considering the above factors.

show abstract

“…Clustering as an unsupervised machine learning algorithm, is a very important data mining technology [10]. It is widely used in the research fields of pattern recognition, spatial data analysis, image processing and marketing etc [11], [12], [13]. The existing classical clustering algorithms can be divided into five types: partition based, hierarchy based, density based, network-based and model-based.…”

Section: Introductionmentioning

confidence: 99%

Double-Layer K-Means++ Clustering Method for Evaluation of Dispatchable Potential of Massive Regional 5G Base Stations

et al. 2022

View full text Add to dashboard Cite

show abstract

Deep-Layer Clustering to Identify Permission Usage Patterns of Android App Categories

Cited by 9 publications

References 32 publications

ZTA: A Novel Zero Trust Framework for Detection and Prevention of Malicious Android Applications

ZTA: A Novel Zero Trust Framework for Detection and Prevention of Malicious Android Applications

A comprehensive review on permissions-based Android malware detection

Double-Layer K-Means++ Clustering Method for Evaluation of Dispatchable Potential of Massive Regional 5G Base Stations

Contact Info

Product

Resources

About