AppFA: A Novel Approach to Detect Malicious Android Applications on the Network. (17th April 2018)
- Record Type:
- Journal Article
- Title:
- AppFA: A Novel Approach to Detect Malicious Android Applications on the Network. (17th April 2018)
- Main Title:
- AppFA: A Novel Approach to Detect Malicious Android Applications on the Network
- Authors:
- He, Gaofeng
Xu, Bingfeng
Zhu, Haiting - Other Names:
- Kambourakis Georgios Academic Editor.
- Abstract:
- Abstract : We propose AppFA, an Application Flow Analysis approach, to detect malicious Android applications (simply apps ) on the network. Unlike most of the existing work, AppFA does not need to install programs on mobile devices or modify mobile operating systems to extract detection features. Besides, it is able to handle encrypted network traffic. Specifically, we propose a constrained clustering algorithm to classify apps network traffic, and use Kernel Principal Component Analysis to build their network behavior profiles. After that, peer group analysis is explored to detect malicious apps by comparing apps' network behavior profiles with the historical data and the profiles of their selected peer groups. These steps can be repeated every several minutes to meet the requirement of online detection. We have implemented AppFA and tested it with a public dataset. The experimental results show that AppFA can cluster apps network traffic efficiently and detect malicious Android apps with high accuracy and low false positive rate. We have also tested the performance of AppFA from the computational time standpoint.
- Is Part Of:
- Security and communication networks. Volume 2018(2018)
- Journal:
- Security and communication networks
- Issue:
- Volume 2018(2018)
- Issue Display:
- Volume 2018, Issue 2018 (2018)
- Year:
- 2018
- Volume:
- 2018
- Issue:
- 2018
- Issue Sort Value:
- 2018-2018-2018-0000
- Page Start:
- Page End:
- Publication Date:
- 2018-04-17
- Subjects:
- Computer networks -- Security measures -- Periodicals
Computer security -- Periodicals
Cryptography -- Periodicals
005.805 - Journal URLs:
- http://onlinelibrary.wiley.com/journal/10.1002/(ISSN)1939-0122 ↗
https://www.hindawi.com/journals/scn/ ↗
http://onlinelibrary.wiley.com/ ↗ - DOI:
- 10.1155/2018/2854728 ↗
- Languages:
- English
- ISSNs:
- 1939-0114
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library HMNTS - ELD Digital store
- Ingest File:
- 22938.xml