On Machine Learning Effectiveness for Malware Detection in Android OS using Static Analysis Data

SYRRIS, Vasileios; GENEIATAKIS, Dimitrios

doi:10.1016/j.jisa.2021.102794

Although various security mechanisms have been introduced in Android operating system in order to enhance its robustness, sheer protection remains an open issue: malicious applications (named as malware) usually find ways to bypass the security processes, whereas users are not aware a priori whether an application can operate as malware. To eliminate this problem, several approaches leverages machine learning for detecting malware using static analysis data. In this direction, we study the effectiveness of supervised machine learning algorithms using static analysis data extracted from the Drebin data set and we provide a short survey of other related works in the domain. We evaluate six well-known classification techniques under different configurations in terms of i) capacity on detecting Android malware and ii) feature selection. Our experimental results demonstrate that classification can reach a high level of accuracy by using only a small subset of features.

SYRRIS Vasileios; GENEIATAKIS Dimitrios;

2021-06-09

ELSEVIER SCIENCE BV

JRC119289

2214-2126 (online),

https://publications.jrc.ec.europa.eu/repository/handle/JRC119289,

10.1016/j.jisa.2021.102794 (online),

Language	Citation

Name	Country	City	Type

Datasets

ID	Title	Public URL

Dataset collections

ID	Acronym	Title	Public URL

Scripts / source codes

Description	Public URL

Additional supporting files

File name	Description	File type

Items published in the JRC Publications Repository are protected by copyright, with all rights reserved, unless otherwise indicated. Additional information: https://ec.europa.eu/info/legal-notice_en#copyright-notice