Feature Selection for Android Malware Detection with Random Forest on Smartphones
Android smartphones, integral to everyday life, offer a multifunctional platform for storing and managing sensitive personal data. However, the ubiquity of Android applications intensifies their vulnerability to malicious applications. This study presents the Static Dynamic Hybrid Feature Extraction...
Gespeichert in:
| Veröffentlicht in: | Revue d'Intelligence Artificielle 2023-08, Vol.37 (4), p.857-869 |
|---|---|
| Hauptverfasser: | , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 869 |
|---|---|
| container_issue | 4 |
| container_start_page | 857 |
| container_title | Revue d'Intelligence Artificielle |
| container_volume | 37 |
| creator | Ibrahim, Ibrahim Mahmood Sallow, Amira Bibo |
| description | Android smartphones, integral to everyday life, offer a multifunctional platform for storing and managing sensitive personal data. However, the ubiquity of Android applications intensifies their vulnerability to malicious applications. This study presents the Static Dynamic Hybrid Feature Extraction (SDHFE) tool, a lightweight automation tool designed for the efficient analysis of Android applications by extracting features from a variety of sources. The research generated multiple datasets, each representing different feature categories and their combinations. A novel approach to improve Android malware detection on smartphones is introduced, leveraging the random forest algorithm. Multiple models were created and evaluated using metrics such as accuracy, precision, recall, and F1 score. The model trained on a dataset comprising permissions and intents achieved the highest average scores, 99.2%, thus outperforming other models. A comparative analysis was conducted to evaluate the efficiency of the SDHFE tool against two widely used tools, APKtool and Androguard, in static feature extraction. The results demonstrated that the SDHFE tool significantly reduced disassembly and analysis time, outperforming APKtool and Androguard by factors of 2.2 and 4.6, respectively. While this research provides valuable insights into Android malware detection, it is important to acknowledge potential limitations. The dynamic nature of malware behavior could affect the generalizability of our approach. Despite these potential limitations, the results underscore the effectiveness of our proposed method for enhancing malware detection in Android smartphones. |
| doi_str_mv | 10.18280/ria.370405 |
| format | Article |
| fullrecord | <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_journals_3097441791</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>3097441791</sourcerecordid><originalsourceid>FETCH-LOGICAL-c1715-4baa42b005edd40769a8a321eda0f66c48b3a6a48dc3eb6f8c92abb66e55f98a3</originalsourceid><addsrcrecordid>eNotkE1LAzEQhoMoWGpP_oGAR9mabD42OZbqqlARrYK3MNlk6Uq7WZMtxX9vsD0NzPsw8_IgdE3JnKpSkbvYwZxVhBNxhiZUC1WIiqtzNCFalwXX-usSzVLqLOFSlkxyMkFvtYdxHz1e-61vxi70uA0RL3oXQ-fwC2wPkNN7P57SQzdu8Dv0LuxwHaJPI87b9Q7iOGxC79MVumhhm_zsNKfos374WD4Vq9fH5-ViVTS0oqLgFoCXlhDhneOkkhoUsJJ6B6SVsuHKMpDAlWuYt7JVjS7BWim9EK3O6BTdHO8OMfzscw_zHfaxzy8NI7rinFaaZur2SDUxpBR9a4bY5bK_hhLzr81kbeaojf0BokhgmA</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>3097441791</pqid></control><display><type>article</type><title>Feature Selection for Android Malware Detection with Random Forest on Smartphones</title><source>Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals</source><creator>Ibrahim, Ibrahim Mahmood ; Sallow, Amira Bibo</creator><creatorcontrib>Ibrahim, Ibrahim Mahmood ; Sallow, Amira Bibo</creatorcontrib><description>Android smartphones, integral to everyday life, offer a multifunctional platform for storing and managing sensitive personal data. However, the ubiquity of Android applications intensifies their vulnerability to malicious applications. This study presents the Static Dynamic Hybrid Feature Extraction (SDHFE) tool, a lightweight automation tool designed for the efficient analysis of Android applications by extracting features from a variety of sources. The research generated multiple datasets, each representing different feature categories and their combinations. A novel approach to improve Android malware detection on smartphones is introduced, leveraging the random forest algorithm. Multiple models were created and evaluated using metrics such as accuracy, precision, recall, and F1 score. The model trained on a dataset comprising permissions and intents achieved the highest average scores, 99.2%, thus outperforming other models. A comparative analysis was conducted to evaluate the efficiency of the SDHFE tool against two widely used tools, APKtool and Androguard, in static feature extraction. The results demonstrated that the SDHFE tool significantly reduced disassembly and analysis time, outperforming APKtool and Androguard by factors of 2.2 and 4.6, respectively. While this research provides valuable insights into Android malware detection, it is important to acknowledge potential limitations. The dynamic nature of malware behavior could affect the generalizability of our approach. Despite these potential limitations, the results underscore the effectiveness of our proposed method for enhancing malware detection in Android smartphones.</description><identifier>ISSN: 0992-499X</identifier><identifier>EISSN: 1958-5748</identifier><identifier>DOI: 10.18280/ria.370405</identifier><language>eng</language><publisher>Edmonton: International Information and Engineering Technology Association (IIETA)</publisher><subject>Algorithms ; Datasets ; Feature extraction ; Malware ; Neural networks ; Operating systems ; Smartphones</subject><ispartof>Revue d'Intelligence Artificielle, 2023-08, Vol.37 (4), p.857-869</ispartof><rights>2023. This work is published under https://creativecommons.org/licenses/by/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>314,777,781,27905,27906</link.rule.ids></links><search><creatorcontrib>Ibrahim, Ibrahim Mahmood</creatorcontrib><creatorcontrib>Sallow, Amira Bibo</creatorcontrib><title>Feature Selection for Android Malware Detection with Random Forest on Smartphones</title><title>Revue d'Intelligence Artificielle</title><description>Android smartphones, integral to everyday life, offer a multifunctional platform for storing and managing sensitive personal data. However, the ubiquity of Android applications intensifies their vulnerability to malicious applications. This study presents the Static Dynamic Hybrid Feature Extraction (SDHFE) tool, a lightweight automation tool designed for the efficient analysis of Android applications by extracting features from a variety of sources. The research generated multiple datasets, each representing different feature categories and their combinations. A novel approach to improve Android malware detection on smartphones is introduced, leveraging the random forest algorithm. Multiple models were created and evaluated using metrics such as accuracy, precision, recall, and F1 score. The model trained on a dataset comprising permissions and intents achieved the highest average scores, 99.2%, thus outperforming other models. A comparative analysis was conducted to evaluate the efficiency of the SDHFE tool against two widely used tools, APKtool and Androguard, in static feature extraction. The results demonstrated that the SDHFE tool significantly reduced disassembly and analysis time, outperforming APKtool and Androguard by factors of 2.2 and 4.6, respectively. While this research provides valuable insights into Android malware detection, it is important to acknowledge potential limitations. The dynamic nature of malware behavior could affect the generalizability of our approach. Despite these potential limitations, the results underscore the effectiveness of our proposed method for enhancing malware detection in Android smartphones.</description><subject>Algorithms</subject><subject>Datasets</subject><subject>Feature extraction</subject><subject>Malware</subject><subject>Neural networks</subject><subject>Operating systems</subject><subject>Smartphones</subject><issn>0992-499X</issn><issn>1958-5748</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2023</creationdate><recordtype>article</recordtype><sourceid>AFKRA</sourceid><sourceid>BENPR</sourceid><sourceid>CCPQU</sourceid><sourceid>DWQXO</sourceid><recordid>eNotkE1LAzEQhoMoWGpP_oGAR9mabD42OZbqqlARrYK3MNlk6Uq7WZMtxX9vsD0NzPsw8_IgdE3JnKpSkbvYwZxVhBNxhiZUC1WIiqtzNCFalwXX-usSzVLqLOFSlkxyMkFvtYdxHz1e-61vxi70uA0RL3oXQ-fwC2wPkNN7P57SQzdu8Dv0LuxwHaJPI87b9Q7iOGxC79MVumhhm_zsNKfos374WD4Vq9fH5-ViVTS0oqLgFoCXlhDhneOkkhoUsJJ6B6SVsuHKMpDAlWuYt7JVjS7BWim9EK3O6BTdHO8OMfzscw_zHfaxzy8NI7rinFaaZur2SDUxpBR9a4bY5bK_hhLzr81kbeaojf0BokhgmA</recordid><startdate>20230801</startdate><enddate>20230801</enddate><creator>Ibrahim, Ibrahim Mahmood</creator><creator>Sallow, Amira Bibo</creator><general>International Information and Engineering Technology Association (IIETA)</general><scope>AAYXX</scope><scope>CITATION</scope><scope>8FE</scope><scope>8FG</scope><scope>ABJCF</scope><scope>AFKRA</scope><scope>BENPR</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>DWQXO</scope><scope>HCIFZ</scope><scope>L6V</scope><scope>M7S</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PRINS</scope><scope>PTHSS</scope></search><sort><creationdate>20230801</creationdate><title>Feature Selection for Android Malware Detection with Random Forest on Smartphones</title><author>Ibrahim, Ibrahim Mahmood ; Sallow, Amira Bibo</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c1715-4baa42b005edd40769a8a321eda0f66c48b3a6a48dc3eb6f8c92abb66e55f98a3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2023</creationdate><topic>Algorithms</topic><topic>Datasets</topic><topic>Feature extraction</topic><topic>Malware</topic><topic>Neural networks</topic><topic>Operating systems</topic><topic>Smartphones</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Ibrahim, Ibrahim Mahmood</creatorcontrib><creatorcontrib>Sallow, Amira Bibo</creatorcontrib><collection>CrossRef</collection><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>Materials Science & Engineering Collection</collection><collection>ProQuest Central UK/Ireland</collection><collection>ProQuest Central</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>ProQuest Central Korea</collection><collection>SciTech Premium Collection</collection><collection>ProQuest Engineering Collection</collection><collection>Engineering Database</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ProQuest Central China</collection><collection>Engineering Collection</collection><jtitle>Revue d'Intelligence Artificielle</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Ibrahim, Ibrahim Mahmood</au><au>Sallow, Amira Bibo</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Feature Selection for Android Malware Detection with Random Forest on Smartphones</atitle><jtitle>Revue d'Intelligence Artificielle</jtitle><date>2023-08-01</date><risdate>2023</risdate><volume>37</volume><issue>4</issue><spage>857</spage><epage>869</epage><pages>857-869</pages><issn>0992-499X</issn><eissn>1958-5748</eissn><abstract>Android smartphones, integral to everyday life, offer a multifunctional platform for storing and managing sensitive personal data. However, the ubiquity of Android applications intensifies their vulnerability to malicious applications. This study presents the Static Dynamic Hybrid Feature Extraction (SDHFE) tool, a lightweight automation tool designed for the efficient analysis of Android applications by extracting features from a variety of sources. The research generated multiple datasets, each representing different feature categories and their combinations. A novel approach to improve Android malware detection on smartphones is introduced, leveraging the random forest algorithm. Multiple models were created and evaluated using metrics such as accuracy, precision, recall, and F1 score. The model trained on a dataset comprising permissions and intents achieved the highest average scores, 99.2%, thus outperforming other models. A comparative analysis was conducted to evaluate the efficiency of the SDHFE tool against two widely used tools, APKtool and Androguard, in static feature extraction. The results demonstrated that the SDHFE tool significantly reduced disassembly and analysis time, outperforming APKtool and Androguard by factors of 2.2 and 4.6, respectively. While this research provides valuable insights into Android malware detection, it is important to acknowledge potential limitations. The dynamic nature of malware behavior could affect the generalizability of our approach. Despite these potential limitations, the results underscore the effectiveness of our proposed method for enhancing malware detection in Android smartphones.</abstract><cop>Edmonton</cop><pub>International Information and Engineering Technology Association (IIETA)</pub><doi>10.18280/ria.370405</doi><tpages>13</tpages><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 0992-499X |
| ispartof | Revue d'Intelligence Artificielle, 2023-08, Vol.37 (4), p.857-869 |
| issn | 0992-499X 1958-5748 |
| language | eng |
| recordid | cdi_proquest_journals_3097441791 |
| source | Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals |
| subjects | Algorithms Datasets Feature extraction Malware Neural networks Operating systems Smartphones |
| title | Feature Selection for Android Malware Detection with Random Forest on Smartphones |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-20T08%3A59%3A22IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Feature%20Selection%20for%20Android%20Malware%20Detection%20with%20Random%20Forest%20on%20Smartphones&rft.jtitle=Revue%20d'Intelligence%20Artificielle&rft.au=Ibrahim,%20Ibrahim%20Mahmood&rft.date=2023-08-01&rft.volume=37&rft.issue=4&rft.spage=857&rft.epage=869&rft.pages=857-869&rft.issn=0992-499X&rft.eissn=1958-5748&rft_id=info:doi/10.18280/ria.370405&rft_dat=%3Cproquest_cross%3E3097441791%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=3097441791&rft_id=info:pmid/&rfr_iscdi=true |