Skip to main content
SpringerLink
Log in

Android Malware Detection Using Multi-stage Classification Models

  • Conference paper
  • First Online:
Complex, Intelligent and Software Intensive Systems (CISIS 2020)

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 1194))

Included in the following conference series:

Abstract

Android malware is a growing threat to the Android operating system. Various anti-virus tools are developed to detect Android malware. Most of these tools use Machine Learning (ML) algorithms. ML-based methods are robust and can detect future threats. However, we cannot directly deploy these resource-intensive tools on smartphones as smartphones have a limited amount of resources. In this paper, we propose two multi-stage classification models for the classification of Android malware. The first model is a combination of logistic regression and linear Support Vector Machine (SVM). We use a combination of logistic regression, K-means clustering, and linear SVM for the second model. We divide each model into two stages. The first stage involves the training of the classification model. The second stage consists of a decision function that classifies a given app as benign or malware. The proposed classification models can detect both Android malware and colluding app-pairs. Android application-collusion is a special kind of threat. The proposed classification models are low compute-intensive and straightforward to implement.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Statista. https://www.statista.com/statistics/272307/market-share-forecast-for-smartphone-operating-systems/

  2. Bartel, A., Bissyande, T., Klein, J., Traon, Y.L., Azert, S., Li, L.: IccTA: detecting inter-component privacy leaks in android apps In: Proceedings of 37th International Conference on Software Engineering, Florence, pp. 280–291. IEEE (2015)

    Google Scholar 

  3. Chin, E., Porter, A.F., Greenwood, K., Wagner, D.: Analyzing inter-application communication in Android. In: Proceedings of the 9th International Conference on Mobile systems, Applications, and Services. ACM, pp. 239–252 (2011)

    Google Scholar 

  4. Felt, A.P., Wang, H.J., Moshchuk, A., Hanna, S., Chin, E.: Permission re-delegation: attacks and defences. In: Proceedings of the 20th USENIX Security Symposium, USENIX Association (2011)

    Google Scholar 

  5. Octeau, D., Jha, S., Derring, M., McDaniel, P., Bartel, A., Li, L., Klein, J., Traon, Y.L.: Combining static analysis with probabilistic models to enable market-scale android inter-component analysis In: Proceedings of 43rd Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, pp. 469–484. ACM (2016)

    Google Scholar 

  6. Porter, A.F., Ha, E., Egelman, S., Haney, A., Chin, E., Wagner, D.: Android permissions: user attention, comprehension, and behaviour In: Proceedings of the 8th Symposium on Usable Privacy and Security, Article 3, pp. 1–14. ACM (2012)

    Google Scholar 

  7. Wang, W., Wang, X., Feng, D., Liu, J., Han, Z., Zhang, X.: Exploring permission-induced risk in android applications for malicious application detection. IEEE Trans. Inf. Forensics Secur. 9(11), 1869–1882 (2014). https://doi.org/10.1109/TIFS.2014.2353996

    Article  Google Scholar 

  8. Xie, Z., Zhu, S.: Group tie: toward hidden collusion group discovery in app stores. In: Proceedings of Conference on Security and Privacy in Wireless & Mobile Networks, pp. 153–164. ACM (2014)

    Google Scholar 

  9. Intel newsroom. https://newsroom.intel.com/news-releases/mcafee-labs-report-reveals-new-mobile-app-collusion-threats/

  10. Yerima, S.Y., Sezer, S., Muttik, I.: High accuracy android malware detection using ensemble learning. IET Inf. Secur. 9(6), 313–320 (2015). https://doi.org/10.1049/iet-ifs.2014.0099, IET Digital Library. https://digital-library.theiet.org/content/journals/10.1049/iet-ifs.2014.0099

  11. Li, J., Sun, L., Yan, Q., Li, Z., Srisa-an, W., Ye, H.: Significant permission identification for machine-learning-based android malware detection. IEEE Trans. Industr. Inf. 14(7), 3216–3225 (2018)

    Article  Google Scholar 

  12. Arp, D., Spreitzenbarth, M., Hübner, M., Gascon, H., Rieck, K.: DREBIN: effective and explainable detection of android malware in your pocket. In: Symposium on Network and Distributed System Security (NDSS) (2014). https://doi.org/10.14722/ndss.2014.23247

  13. Lu, Y., Kuo, C., Chen, H., Chen, C., Chou, S.: A SVM-based malware detection mechanism for android devices. In: 2018 International Conference on System Science and Engineering (ICSSE), New Taipei, pp. 1–6 (2018)

    Google Scholar 

  14. Faiz, M.F.I., Hussain, A.M., Marchang, N.: Detection of collusive app-pairs using machine learning. In: Proceedings of 3rd International Conference on Consumer Electronics ASIA, pp. 206–212. IEEE (2018)

    Google Scholar 

  15. Marforio, C., Ritzdorf, H., Francillon, A., Capkun, S.: Analysis of the communication between colluding applications on modern smartphones In: Proceedings of the 28th Annual Computer Security Applications Conference, pp. 51–60. ACM (2012)

    Google Scholar 

  16. Kalutarage, H.K., Nguyen, H.N., Shaikh, S.A.: Towards a threat assessment framework for apps collusion. In: Telecommunication Systems, pp. 417–430. Springer (2017)

    Google Scholar 

  17. Faiz, M.F.I., Hussain, M.A., Marchang, N.: App-collusion detection using a two-stage classifier. In: Barolli, L., Takizawa, M., Xhafa, F., Enokido, T. (eds.) Web, Artificial Intelligence and Network Applications. WAINA 2019. Advances in Intelligent Systems and Computing, vol. 927. Springer, Cham (2019)

    Google Scholar 

  18. Faiz, M.F.I., Hussain, A., Marchang, N.: Machine learning based app-collusion detection in smartphones. In: 2019 IEEE 23rd International Symposium on Consumer Technologies (ISCT), Ancona, Italy (2019)

    Google Scholar 

  19. Guyon, I., Weston, J., Barnhill, S., Vapnik, V.: Gene selection for cancer classification using support vector machines. Mach. Learn. 46, 389–422 (2002). https://doi.org/10.1023/A:1012487302797

    Article  MATH  Google Scholar 

  20. Abu-Mostafa, Y.S.: Learning From Data, pp. 1–213. AMLBook (2012)

    Google Scholar 

  21. Bishop, C.: Pattern Recognition and Machine Learning, pp. 1–711. Springer-Verlag, New York (2006)

    Google Scholar 

  22. Yerima, S.Y., Sezer, S.: DroidFusion: a novel multilevel classifier fusion approach for android malware detection. IEEE Trans. Cybern. 49(2), 453–466 (2019)

    Article  Google Scholar 

  23. Blasco, J., Chen, T.M.: J. Comput. Virol. Hack. Tech. 14, 127 (2018). https://doi.org/10.1007/s11416-017-0296-4

  24. Sculley, D.: Web-scale k-means clustering. In: Proceedings of the 19th International Conference on World Wide Web (WWW 2010), pp. 1177–1178. Association for Computing Machinery, New York (2010). https://doi.org/10.1145/1772690.1772862

  25. Gu, Q., Han, J.: Clustered support vector machines. In: Proceedings of the Sixteenth International Conference on Artificial Intelligence and Statistics, vol. 31. PMLR (2013)

    Google Scholar 

  26. Suykens, J.A.K., Vandewalle, J.: Least squares support vector machine classifiers. Neural Process. Lett. 9, 293–300 (1999). https://doi.org/10.1023/A:1018628609742

    Article  Google Scholar 

  27. Ma, Y., Zhang, Q., Li, D., Tian, Y.: LINEX support vector machine for large-scale classification. IEEE Access 7, 70319–70331 (2019)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. North Eastern Regional Institute of Science and Technology, Itanagar, India

    Md. Faiz Iqbal Faiz, Md. Anwar Hussain & Ningrinla Marchang

Authors
  1. Md. Faiz Iqbal Faiz
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Md. Anwar Hussain
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Ningrinla Marchang
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Md. Faiz Iqbal Faiz .

Editor information

Editors and Affiliations

  1. Department of Information and Communication Engineering, Faculty of Information Engineering, Fukuoka Institute of Technology, Fukuoka, Japan

    Leonard Barolli

  2. Institute of Information Technology, Lodz University of Technology, Łódź, Poland

    Aneta Poniszewska-Maranda

  3. Faculty of Business Administration, Rissho University, Tokyo, Japan

    Tomoya Enokido

Rights and permissions

Reprints and permissions

Copyright information

© 2021 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Faiz, M.F.I., Hussain, M.A., Marchang, N. (2021). Android Malware Detection Using Multi-stage Classification Models. In: Barolli, L., Poniszewska-Maranda, A., Enokido, T. (eds) Complex, Intelligent and Software Intensive Systems. CISIS 2020. Advances in Intelligent Systems and Computing, vol 1194. Springer, Cham. https://doi.org/10.1007/978-3-030-50454-0_23

Download citation

Publish with us

Policies and ethics

Search

Navigation