AppFA: A Novel Approach to Detect Malicious Android Applications on the Network
Joint Authors
Zhu, Haiting
He, Gaofeng
Xu, Bingfeng
Source
Security and Communication Networks
Issue
Vol. 2018, Issue 2018 (31 Dec. 2018), pp.1-15, 15 p.
Publisher
Hindawi Publishing Corporation
Publication Date
2018-04-17
Country of Publication
Egypt
No. of Pages
15
Main Subjects
Information Technology and Computer Science
Abstract EN
We propose AppFA, an Application Flow Analysis approach, to detect malicious Android applications (simply apps) on the network.
Unlike most of the existing work, AppFA does not need to install programs on mobile devices or modify mobile operating systems to extract detection features.
Besides, it is able to handle encrypted network traffic.
Specifically, we propose a constrained clustering algorithm to classify apps network traffic, and use Kernel Principal Component Analysis to build their network behavior profiles.
After that, peer group analysis is explored to detect malicious apps by comparing apps’ network behavior profiles with the historical data and the profiles of their selected peer groups.
These steps can be repeated every several minutes to meet the requirement of online detection.
We have implemented AppFA and tested it with a public dataset.
The experimental results show that AppFA can cluster apps network traffic efficiently and detect malicious Android apps with high accuracy and low false positive rate.
We have also tested the performance of AppFA from the computational time standpoint.
American Psychological Association (APA)
He, Gaofeng& Xu, Bingfeng& Zhu, Haiting. 2018. AppFA: A Novel Approach to Detect Malicious Android Applications on the Network. Security and Communication Networks،Vol. 2018, no. 2018, pp.1-15.
https://search.emarefa.net/detail/BIM-1214018
Modern Language Association (MLA)
He, Gaofeng…[et al.]. AppFA: A Novel Approach to Detect Malicious Android Applications on the Network. Security and Communication Networks No. 2018 (2018), pp.1-15.
https://search.emarefa.net/detail/BIM-1214018
American Medical Association (AMA)
He, Gaofeng& Xu, Bingfeng& Zhu, Haiting. AppFA: A Novel Approach to Detect Malicious Android Applications on the Network. Security and Communication Networks. 2018. Vol. 2018, no. 2018, pp.1-15.
https://search.emarefa.net/detail/BIM-1214018
Data Type
Journal Articles
Language
English
Notes
Includes bibliographical references
Record ID
BIM-1214018