Abstract
In this study, a framework for Android malware detection based on permissions is presented. This framework uses multiple linear regression methods. Application permissions, which are one of the most critical building blocks in the security of the Android operating system, are extracted through static analysis, and security analyzes of applications are carried out with machine learning techniques. Based on the multiple linear regression techniques, two classifiers are proposed for permission-based Android malware detection. These classifiers are compared on four different datasets with basic machine learning techniques such as support vector machine, k-nearest neighbor, Naive Bayes, and decision trees. In addition, using the bagging method, which is one of the ensemble learning, different classifiers are created, and the classification performance is increased. As a result, remarkable performances are obtained with classification algorithms based on linear regression models without the need for very complex classification algorithms.
Highlights
When the first mobile phones were considered, generally speaking or short message transactions were carried out with mobile phones in daily life
The approaches based on the proposed linear regression model show 2% to 5% higher performance than the naive Bayes (NB) algorithm. linear-Support vector machines (SVM) and rbf-SVM methods give 0.9655 and 0.9278 performances, respectively, according to the f-measure metric
In order to make a fair comparison on the existing Bagging-decision trees (DT) and Ensemble-1 and Ensemble-2 models, the training set is randomly divided into five parts, and bagging techniques are compared
Summary
When the first mobile phones were considered, generally speaking or short message transactions were carried out with mobile phones in daily life. With mobile phones used today, remarkable transactions such as banking transactions, social media use, and personal data storage take place Because of these essential processes, mobile devices are the main target of malware developers. In addition to Android being an open-source operating system, it is very flexible for users that applications are provided to devices such as other stores or third-party applications apart from the official application stores. For this reason, Android is frequently preferred by many people around the world. A machine learning-based Android malware detection system is developed, in which application permissions, which have an important place in Android security, are used as attributes. The permissions requested by the applications are evaluated with machine learning models, and it is decided whether the application is malware or not
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
