Contrasting permission patterns between clean and malicious android applications

Moonsamy, V; Rong, J; Liu, S; Li, G; Batten, L

Contrasting permission patterns between clean and malicious android applications

Moonsamy, V Rong, J Liu, S

Li, G Batten, L

Permalink

Publication Type:: Conference Proceeding
Citation:: Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, 2013, 127 LNICST pp. 69 - 85
Issue Date:: 2013-01-01

Closed Access

	Filename	Description	Size
	LNICST 127 - Security and Privacy in Communication Networks.pdf	Published version	349.84 kB	Adobe PDF	View/Open

Copyright Clearance Process

Recently Added
In Progress
Closed Access

This item is closed access and not available.

Full metadata record

Field	Value	Language
dc.contributor.author	Moonsamy, V	en_US
dc.contributor.author	Rong, J	en_US
dc.contributor.author	Liu, S https://orcid.org/0000-0001-6062-6580	en_US
dc.contributor.author	Li, G	en_US
dc.contributor.author	Batten, L	en_US
dc.date.issued	2013-01-01	en_US
dc.identifier.citation	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, 2013, 127 LNICST pp. 69 - 85	en_US
dc.identifier.isbn	9783319042824	en_US
dc.identifier.issn	1867-8211	en_US
dc.identifier.uri	http://hdl.handle.net/10453/120288
dc.description.abstract	© Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2013. The Android platform uses a permission system model to allow users and developers to regulate access to private information and system resources required by applications. Permissions have been proved to be useful for inferring behaviors and characteristics of an application. In this paper, a novel method to extract contrasting permission patterns for clean and malicious applications is proposed. Contrary to existing work, both required and used permissions were considered when discovering the patterns. We evaluated our methodology on a clean and a malware dataset, each comprising of 1227 applications. Our empirical results suggest that our permission patterns can capture key differences between clean and malicious applications, which can assist in characterizing these two types of applications.	en_US
dc.relation.ispartof	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST	en_US
dc.title	Contrasting permission patterns between clean and malicious android applications	en_US
dc.type	Conference Proceeding
utslib.citation.volume	127 LNICST	en_US
utslib.for	080109 Pattern Recognition and Data Mining	en_US
pubs.embargo.period	Not known	en_US
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Computer Science
pubs.organisational-group	/University of Technology Sydney/Strength - AAI - Advanced Analytics Institute Research Centre
utslib.copyright.status	closed_access
pubs.publication-status	Published	en_US
pubs.volume	127 LNICST	en_US

Abstract:

© Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2013. The Android platform uses a permission system model to allow users and developers to regulate access to private information and system resources required by applications. Permissions have been proved to be useful for inferring behaviors and characteristics of an application. In this paper, a novel method to extract contrasting permission patterns for clean and malicious applications is proposed. Contrary to existing work, both required and used permissions were considered when discovering the patterns. We evaluated our methodology on a clean and a malware dataset, each comprising of 1227 applications. Our empirical results suggest that our permission patterns can capture key differences between clean and malicious applications, which can assist in characterizing these two types of applications.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/120288