Potentially Unwanted App Detection for Blockchain-based Android App Marketplace

Android is a mobile operating system with a high degree of openness, which attracts an increasing number of developers. Android application (or simply, app) marketplace provides a trusted source of apps for users and a more equitable competition environment for individual developers and commercial t...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
Veröffentlicht in:	IEEE internet of things journal 2023-12, Vol.10 (24), p.1-1
Hauptverfasser:	cui, Yuning, sun, Yi, lin, Zhaowen, ma, Baoquan, li, Yujie
Format:	Artikel
Sprache:	eng
Schlagworte:	Algorithms Android app marketplace Applications programs Blockchain Blockchains Clustering Clustering algorithms Cryptography dynamic analysis Heuristic algorithms Internet Malware Mobile operating systems Operating systems potentially unwanted app Security User experience
Online-Zugang:	Volltext bestellen
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page	1
container_issue	24
container_start_page	1
container_title	IEEE internet of things journal
container_volume	10
creator	cui, Yuning sun, Yi lin, Zhaowen ma, Baoquan li, Yujie
description	Android is a mobile operating system with a high degree of openness, which attracts an increasing number of developers. Android application (or simply, app) marketplace provides a trusted source of apps for users and a more equitable competition environment for individual developers and commercial teams. Blockchain's advantages of decentralization and data immutability are suitable for the Android app marketplace, which is mainly characterized by openness, equality, and security. However, this may also facilitate malicious developers to publish low-quality apps to display ads or steal users' privacy for revenue. Therefore, blockchain-based app marketplaces have a strong need to identify those potentially unwanted apps (PUAs). In this paper, we first introduce our blockchain-based app marketplace model. Then, we propose a new PUA detection method, mainly based on metadata and user ratings, and they are easily accessible from blockchain-based app marketplaces. Moreover, we introduce dynamic analysis to check whether the URLs visited by the app are in malicious URL blacklists since apps with massive access to these URLs tend to affect user experience. After that, we pre-process those complex and redundant features and represent each app as an embedding. Finally, to validate the effectiveness of our method, we utilize several clustering algorithms to represent these apps as clusters and search for suspicious PUA clusters. Our study reveals several characteristics of PUA and suggests that PUAs are still present and need to be urgently removed.
doi_str_mv	10.1109/JIOT.2023.3262594
format	Article
fullrecord	<record><control><sourceid>proquest_RIE</sourceid><recordid>TN_cdi_crossref_primary_10_1109_JIOT_2023_3262594</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>10086584</ieee_id><sourcerecordid>2901509441</sourcerecordid><originalsourceid>FETCH-LOGICAL-c246t-1f7a8874ad287817627dbd160fb0cb59a63bcaece2009b1802958892df269ea03</originalsourceid><addsrcrecordid>eNpNkD1PwzAQQC0EElXpD0BiiMSccr4kjj2W8lVUVIZ2thzHEWlDHGxXqP-eRGHodDe8dyc9Qm4pzCkF8fC-2mznCJjME2SYifSCTDDBPE4Zw8uz_ZrMvN8DQK9lVLAJ2XzaYNpQq6Y5Rbv2V7XBlNGi66InE4wOtW2jyrrosbH6oL9U3caF8gPSls7WI_qh3MGErlHa3JCrSjXezP7nlOxenrfLt3i9eV0tF-tYY8pCTKtccZ6nqkSec5ozzMuipAyqAnSRCcWSQiujDQKIgnJAkXEusKyQCaMgmZL78W7n7M_R-CD39uja_qVEATQDkaa0p-hIaWe9d6aSnau_lTtJCnJIJ4d0ckgn_9P1zt3o1MaYMx44y3ia_AGkp2l1</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2901509441</pqid></control><display><type>article</type><title>Potentially Unwanted App Detection for Blockchain-based Android App Marketplace</title><source>IEEE Electronic Library (IEL)</source><creator>cui, Yuning ; sun, Yi ; lin, Zhaowen ; ma, Baoquan ; li, Yujie</creator><creatorcontrib>cui, Yuning ; sun, Yi ; lin, Zhaowen ; ma, Baoquan ; li, Yujie</creatorcontrib><description>Android is a mobile operating system with a high degree of openness, which attracts an increasing number of developers. Android application (or simply, app) marketplace provides a trusted source of apps for users and a more equitable competition environment for individual developers and commercial teams. Blockchain's advantages of decentralization and data immutability are suitable for the Android app marketplace, which is mainly characterized by openness, equality, and security. However, this may also facilitate malicious developers to publish low-quality apps to display ads or steal users' privacy for revenue. Therefore, blockchain-based app marketplaces have a strong need to identify those potentially unwanted apps (PUAs). In this paper, we first introduce our blockchain-based app marketplace model. Then, we propose a new PUA detection method, mainly based on metadata and user ratings, and they are easily accessible from blockchain-based app marketplaces. Moreover, we introduce dynamic analysis to check whether the URLs visited by the app are in malicious URL blacklists since apps with massive access to these URLs tend to affect user experience. After that, we pre-process those complex and redundant features and represent each app as an embedding. Finally, to validate the effectiveness of our method, we utilize several clustering algorithms to represent these apps as clusters and search for suspicious PUA clusters. Our study reveals several characteristics of PUA and suggests that PUAs are still present and need to be urgently removed.</description><identifier>ISSN: 2327-4662</identifier><identifier>EISSN: 2327-4662</identifier><identifier>DOI: 10.1109/JIOT.2023.3262594</identifier><identifier>CODEN: IITJAU</identifier><language>eng</language><publisher>Piscataway: IEEE</publisher><subject>Algorithms ; Android app marketplace ; Applications programs ; Blockchain ; Blockchains ; Clustering ; Clustering algorithms ; Cryptography ; dynamic analysis ; Heuristic algorithms ; Internet ; Malware ; Mobile operating systems ; Operating systems ; potentially unwanted app ; Security ; User experience</subject><ispartof>IEEE internet of things journal, 2023-12, Vol.10 (24), p.1-1</ispartof><rights>Copyright The Institute of Electrical and Electronics Engineers, Inc. (IEEE) 2023</rights><woscitedreferencessubscribed>false</woscitedreferencessubscribed><cites>FETCH-LOGICAL-c246t-1f7a8874ad287817627dbd160fb0cb59a63bcaece2009b1802958892df269ea03</cites><orcidid>0000-0002-1427-8682 ; 0000-0003-4234-6221 ; 0000-0002-0275-2797</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/10086584$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>315,781,785,797,27928,27929,54762</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/10086584$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>cui, Yuning</creatorcontrib><creatorcontrib>sun, Yi</creatorcontrib><creatorcontrib>lin, Zhaowen</creatorcontrib><creatorcontrib>ma, Baoquan</creatorcontrib><creatorcontrib>li, Yujie</creatorcontrib><title>Potentially Unwanted App Detection for Blockchain-based Android App Marketplace</title><title>IEEE internet of things journal</title><addtitle>JIoT</addtitle><description>Android is a mobile operating system with a high degree of openness, which attracts an increasing number of developers. Android application (or simply, app) marketplace provides a trusted source of apps for users and a more equitable competition environment for individual developers and commercial teams. Blockchain's advantages of decentralization and data immutability are suitable for the Android app marketplace, which is mainly characterized by openness, equality, and security. However, this may also facilitate malicious developers to publish low-quality apps to display ads or steal users' privacy for revenue. Therefore, blockchain-based app marketplaces have a strong need to identify those potentially unwanted apps (PUAs). In this paper, we first introduce our blockchain-based app marketplace model. Then, we propose a new PUA detection method, mainly based on metadata and user ratings, and they are easily accessible from blockchain-based app marketplaces. Moreover, we introduce dynamic analysis to check whether the URLs visited by the app are in malicious URL blacklists since apps with massive access to these URLs tend to affect user experience. After that, we pre-process those complex and redundant features and represent each app as an embedding. Finally, to validate the effectiveness of our method, we utilize several clustering algorithms to represent these apps as clusters and search for suspicious PUA clusters. Our study reveals several characteristics of PUA and suggests that PUAs are still present and need to be urgently removed.</description><subject>Algorithms</subject><subject>Android app marketplace</subject><subject>Applications programs</subject><subject>Blockchain</subject><subject>Blockchains</subject><subject>Clustering</subject><subject>Clustering algorithms</subject><subject>Cryptography</subject><subject>dynamic analysis</subject><subject>Heuristic algorithms</subject><subject>Internet</subject><subject>Malware</subject><subject>Mobile operating systems</subject><subject>Operating systems</subject><subject>potentially unwanted app</subject><subject>Security</subject><subject>User experience</subject><issn>2327-4662</issn><issn>2327-4662</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2023</creationdate><recordtype>article</recordtype><sourceid>RIE</sourceid><recordid>eNpNkD1PwzAQQC0EElXpD0BiiMSccr4kjj2W8lVUVIZ2thzHEWlDHGxXqP-eRGHodDe8dyc9Qm4pzCkF8fC-2mznCJjME2SYifSCTDDBPE4Zw8uz_ZrMvN8DQK9lVLAJ2XzaYNpQq6Y5Rbv2V7XBlNGi66InE4wOtW2jyrrosbH6oL9U3caF8gPSls7WI_qh3MGErlHa3JCrSjXezP7nlOxenrfLt3i9eV0tF-tYY8pCTKtccZ6nqkSec5ozzMuipAyqAnSRCcWSQiujDQKIgnJAkXEusKyQCaMgmZL78W7n7M_R-CD39uja_qVEATQDkaa0p-hIaWe9d6aSnau_lTtJCnJIJ4d0ckgn_9P1zt3o1MaYMx44y3ia_AGkp2l1</recordid><startdate>20231215</startdate><enddate>20231215</enddate><creator>cui, Yuning</creator><creator>sun, Yi</creator><creator>lin, Zhaowen</creator><creator>ma, Baoquan</creator><creator>li, Yujie</creator><general>IEEE</general><general>The Institute of Electrical and Electronics Engineers, Inc. (IEEE)</general><scope>97E</scope><scope>RIA</scope><scope>RIE</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>8FD</scope><scope>JQ2</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope><orcidid>https://orcid.org/0000-0002-1427-8682</orcidid><orcidid>https://orcid.org/0000-0003-4234-6221</orcidid><orcidid>https://orcid.org/0000-0002-0275-2797</orcidid></search><sort><creationdate>20231215</creationdate><title>Potentially Unwanted App Detection for Blockchain-based Android App Marketplace</title><author>cui, Yuning ; sun, Yi ; lin, Zhaowen ; ma, Baoquan ; li, Yujie</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c246t-1f7a8874ad287817627dbd160fb0cb59a63bcaece2009b1802958892df269ea03</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2023</creationdate><topic>Algorithms</topic><topic>Android app marketplace</topic><topic>Applications programs</topic><topic>Blockchain</topic><topic>Blockchains</topic><topic>Clustering</topic><topic>Clustering algorithms</topic><topic>Cryptography</topic><topic>dynamic analysis</topic><topic>Heuristic algorithms</topic><topic>Internet</topic><topic>Malware</topic><topic>Mobile operating systems</topic><topic>Operating systems</topic><topic>potentially unwanted app</topic><topic>Security</topic><topic>User experience</topic><toplevel>online_resources</toplevel><creatorcontrib>cui, Yuning</creatorcontrib><creatorcontrib>sun, Yi</creatorcontrib><creatorcontrib>lin, Zhaowen</creatorcontrib><creatorcontrib>ma, Baoquan</creatorcontrib><creatorcontrib>li, Yujie</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 2005–Present</collection><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Electronic Library (IEL)</collection><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Technology Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><jtitle>IEEE internet of things journal</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>cui, Yuning</au><au>sun, Yi</au><au>lin, Zhaowen</au><au>ma, Baoquan</au><au>li, Yujie</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Potentially Unwanted App Detection for Blockchain-based Android App Marketplace</atitle><jtitle>IEEE internet of things journal</jtitle><stitle>JIoT</stitle><date>2023-12-15</date><risdate>2023</risdate><volume>10</volume><issue>24</issue><spage>1</spage><epage>1</epage><pages>1-1</pages><issn>2327-4662</issn><eissn>2327-4662</eissn><coden>IITJAU</coden><abstract>Android is a mobile operating system with a high degree of openness, which attracts an increasing number of developers. Android application (or simply, app) marketplace provides a trusted source of apps for users and a more equitable competition environment for individual developers and commercial teams. Blockchain's advantages of decentralization and data immutability are suitable for the Android app marketplace, which is mainly characterized by openness, equality, and security. However, this may also facilitate malicious developers to publish low-quality apps to display ads or steal users' privacy for revenue. Therefore, blockchain-based app marketplaces have a strong need to identify those potentially unwanted apps (PUAs). In this paper, we first introduce our blockchain-based app marketplace model. Then, we propose a new PUA detection method, mainly based on metadata and user ratings, and they are easily accessible from blockchain-based app marketplaces. Moreover, we introduce dynamic analysis to check whether the URLs visited by the app are in malicious URL blacklists since apps with massive access to these URLs tend to affect user experience. After that, we pre-process those complex and redundant features and represent each app as an embedding. Finally, to validate the effectiveness of our method, we utilize several clustering algorithms to represent these apps as clusters and search for suspicious PUA clusters. Our study reveals several characteristics of PUA and suggests that PUAs are still present and need to be urgently removed.</abstract><cop>Piscataway</cop><pub>IEEE</pub><doi>10.1109/JIOT.2023.3262594</doi><tpages>1</tpages><orcidid>https://orcid.org/0000-0002-1427-8682</orcidid><orcidid>https://orcid.org/0000-0003-4234-6221</orcidid><orcidid>https://orcid.org/0000-0002-0275-2797</orcidid></addata></record>
fulltext	fulltext_linktorsrc
identifier	ISSN: 2327-4662
ispartof	IEEE internet of things journal, 2023-12, Vol.10 (24), p.1-1
issn	2327-4662 2327-4662
language	eng
recordid	cdi_crossref_primary_10_1109_JIOT_2023_3262594
source	IEEE Electronic Library (IEL)
subjects	Algorithms Android app marketplace Applications programs Blockchain Blockchains Clustering Clustering algorithms Cryptography dynamic analysis Heuristic algorithms Internet Malware Mobile operating systems Operating systems potentially unwanted app Security User experience
title	Potentially Unwanted App Detection for Blockchain-based Android App Marketplace
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-17T06%3A06%3A29IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_RIE&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Potentially%20Unwanted%20App%20Detection%20for%20Blockchain-based%20Android%20App%20Marketplace&rft.jtitle=IEEE%20internet%20of%20things%20journal&rft.au=cui,%20Yuning&rft.date=2023-12-15&rft.volume=10&rft.issue=24&rft.spage=1&rft.epage=1&rft.pages=1-1&rft.issn=2327-4662&rft.eissn=2327-4662&rft.coden=IITJAU&rft_id=info:doi/10.1109/JIOT.2023.3262594&rft_dat=%3Cproquest_RIE%3E2901509441%3C/proquest_RIE%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2901509441&rft_id=info:pmid/&rft_ieee_id=10086584&rfr_iscdi=true