Title: A detection model of malicious Android applications based on Naive Bayes

Authors: Chundong Wang; Yi Zhao; Xiuliang Mo

Addresses: Tianjing University of Technology, TianJin 300384, China ' Tianjing University of Technology, TianJin 300384, China ' Tianjing University of Technology, TianJin 300384, China

Abstract: With the popularity of mobile devices, thousands of malicious applications targeting mobile devices, including the popular Android platform, are created on a daily basis, which cause substantial losses for their users. How to detect malicious applications efficiently has become a new and ever-growing challenge. However, previous studies overlooked malicious potential permission combinations as a feature in detection. In this paper, according to the Android permission mechanism, we propose and implement a detection model based on Naive Bayes. The model utilises the Apriori algorithm to effectively mine the potential correlation in permissions among the various malicious applications. Then, in order to improve the performance of the Android malware detection system, the additional feature methodology proposed in this paper is used to deal with samples which have dangerous permission combinations. Combined with the improved Naive Bayes classifier, samples are classified into two categories. The experimental result reveals that the optimal detection rate in our detection model is 95.63%. Thus, it significantly improves the accuracy of the Naive Bayes in the detection of malicious Android applications.

Keywords: Android permission; malware detection; machine learning.

DOI: 10.1504/IJES.2019.100867

International Journal of Embedded Systems, 2019 Vol.11 No.4, pp.508 - 515

Received: 17 Nov 2016
Accepted: 31 Jul 2017
Published online: 19 Jul 2019 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article