Contrasting permission patterns between clean and malicious android applications

Veelasha Moonsamy; Jia Rong; Shaowu Liu; Gang Li; Lynn Batten

Contrasting permission patterns between clean and malicious android applications

Veelasha Moonsamy, Jia Rong, Shaowu Liu, Gang Li, Lynn Batten

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

Abstract

The Android platform uses a permission system model to allow users and developers to regulate access to private information and system resources required by applications. Permissions have been proved to be useful for inferring behaviors and characteristics of an application. In this paper, a novel method to extract contrasting permission patterns for clean and malicious applications is proposed. Contrary to existing work, both required and used permissions were considered when discovering the patterns. We evaluated our methodology on a clean and a malware dataset, each comprising of 1227 applications. Our empirical results suggest that our permission patterns can capture key differences between clean and malicious applications, which can assist in characterizing these two types of applications.

Original language	English
Title of host publication	Security and Privacy in Communication Networks - 9th International ICST Conference, SecureComm 2013, Revised Selected Papers
Editors	Tanveer Zia, Morley Mao, Albert Zomaya, Vijay Varadharajan
Publisher	Springer-Verlag London Ltd.
Pages	69-85
Number of pages	17
ISBN (Print)	9783319042824
Publication status	Published - 1 Jan 2013
Externally published	Yes
Event	International Conference on Security and Privacy for Communication Networks2013 - Sydney, Australia Duration: 25 Sept 2013 → 28 Sept 2013 Conference number: 9th https://link.springer.com/book/10.1007/978-3-319-04283-1 (Proceedings)

Publication series

Name	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
Volume	127 LNICST
ISSN (Print)	1867-8211

Conference

Conference	International Conference on Security and Privacy for Communication Networks2013
Abbreviated title	SecureComm 2013
Country/Territory	Australia
City	Sydney
Period	25/09/13 → 28/09/13
Internet address	https://link.springer.com/book/10.1007/978-3-319-04283-1 (Proceedings)

Keywords

Android permission
Contrast mining
Malware detection
Permission pattern

Cite this

Moonsamy, V., Rong, J., Liu, S., Li, G., & Batten, L. (2013). Contrasting permission patterns between clean and malicious android applications. In T. Zia, M. Mao, A. Zomaya, & V. Varadharajan (Eds.), Security and Privacy in Communication Networks - 9th International ICST Conference, SecureComm 2013, Revised Selected Papers (pp. 69-85). (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 127 LNICST). Springer-Verlag London Ltd..

Moonsamy, Veelasha ; Rong, Jia ; Liu, Shaowu et al. / Contrasting permission patterns between clean and malicious android applications. Security and Privacy in Communication Networks - 9th International ICST Conference, SecureComm 2013, Revised Selected Papers. editor / Tanveer Zia ; Morley Mao ; Albert Zomaya ; Vijay Varadharajan. Springer-Verlag London Ltd., 2013. pp. 69-85 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST).

@inproceedings{70c05dc2605f4eaa817001b8344384b5,

title = "Contrasting permission patterns between clean and malicious android applications",

abstract = "The Android platform uses a permission system model to allow users and developers to regulate access to private information and system resources required by applications. Permissions have been proved to be useful for inferring behaviors and characteristics of an application. In this paper, a novel method to extract contrasting permission patterns for clean and malicious applications is proposed. Contrary to existing work, both required and used permissions were considered when discovering the patterns. We evaluated our methodology on a clean and a malware dataset, each comprising of 1227 applications. Our empirical results suggest that our permission patterns can capture key differences between clean and malicious applications, which can assist in characterizing these two types of applications.",

keywords = "Android permission, Contrast mining, Malware detection, Permission pattern",

author = "Veelasha Moonsamy and Jia Rong and Shaowu Liu and Gang Li and Lynn Batten",

year = "2013",

month = jan,

day = "1",

language = "English",

isbn = "9783319042824",

series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",

publisher = "Springer-Verlag London Ltd.",

pages = "69--85",

editor = "Tanveer Zia and Morley Mao and Albert Zomaya and Vijay Varadharajan",

booktitle = "Security and Privacy in Communication Networks - 9th International ICST Conference, SecureComm 2013, Revised Selected Papers",

address = "Germany",

note = "International Conference on Security and Privacy for Communication Networks2013, SecureComm 2013 ; Conference date: 25-09-2013 Through 28-09-2013",

url = "https://link.springer.com/book/10.1007/978-3-319-04283-1",

}

Moonsamy, V, Rong, J, Liu, S, Li, G & Batten, L 2013, Contrasting permission patterns between clean and malicious android applications. in T Zia, M Mao, A Zomaya & V Varadharajan (eds), Security and Privacy in Communication Networks - 9th International ICST Conference, SecureComm 2013, Revised Selected Papers. Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, vol. 127 LNICST, Springer-Verlag London Ltd., pp. 69-85, International Conference on Security and Privacy for Communication Networks2013, Sydney, New South Wales, Australia, 25/09/13.

Contrasting permission patterns between clean and malicious android applications. / Moonsamy, Veelasha; Rong, Jia; Liu, Shaowu et al.
Security and Privacy in Communication Networks - 9th International ICST Conference, SecureComm 2013, Revised Selected Papers. ed. / Tanveer Zia; Morley Mao; Albert Zomaya; Vijay Varadharajan. Springer-Verlag London Ltd., 2013. p. 69-85 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 127 LNICST).

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research › peer-review

TY - GEN

T1 - Contrasting permission patterns between clean and malicious android applications

AU - Moonsamy, Veelasha

AU - Rong, Jia

AU - Liu, Shaowu

AU - Li, Gang

AU - Batten, Lynn

N1 - Conference code: 9th

PY - 2013/1/1

Y1 - 2013/1/1

N2 - The Android platform uses a permission system model to allow users and developers to regulate access to private information and system resources required by applications. Permissions have been proved to be useful for inferring behaviors and characteristics of an application. In this paper, a novel method to extract contrasting permission patterns for clean and malicious applications is proposed. Contrary to existing work, both required and used permissions were considered when discovering the patterns. We evaluated our methodology on a clean and a malware dataset, each comprising of 1227 applications. Our empirical results suggest that our permission patterns can capture key differences between clean and malicious applications, which can assist in characterizing these two types of applications.

AB - The Android platform uses a permission system model to allow users and developers to regulate access to private information and system resources required by applications. Permissions have been proved to be useful for inferring behaviors and characteristics of an application. In this paper, a novel method to extract contrasting permission patterns for clean and malicious applications is proposed. Contrary to existing work, both required and used permissions were considered when discovering the patterns. We evaluated our methodology on a clean and a malware dataset, each comprising of 1227 applications. Our empirical results suggest that our permission patterns can capture key differences between clean and malicious applications, which can assist in characterizing these two types of applications.

KW - Android permission

KW - Contrast mining

KW - Malware detection

KW - Permission pattern

UR - http://www.scopus.com/inward/record.url?scp=85006342365&partnerID=8YFLogxK

M3 - Conference Paper

AN - SCOPUS:85006342365

SN - 9783319042824

T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST

SP - 69

EP - 85

BT - Security and Privacy in Communication Networks - 9th International ICST Conference, SecureComm 2013, Revised Selected Papers

A2 - Zia, Tanveer

A2 - Mao, Morley

A2 - Zomaya, Albert

A2 - Varadharajan, Vijay

PB - Springer-Verlag London Ltd.

T2 - International Conference on Security and Privacy for Communication Networks2013

Y2 - 25 September 2013 through 28 September 2013

ER -

Moonsamy V, Rong J, Liu S, Li G, Batten L. Contrasting permission patterns between clean and malicious android applications. In Zia T, Mao M, Zomaya A, Varadharajan V, editors, Security and Privacy in Communication Networks - 9th International ICST Conference, SecureComm 2013, Revised Selected Papers. Springer-Verlag London Ltd. 2013. p. 69-85. (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST).

Contrasting permission patterns between clean and malicious android applications

Abstract

Publication series

Conference

Keywords

Other files and links

Cite this