Potential component leaks in Android apps: an investigation into a new feature set for malware detection

Li Li, Kevin Allix, Daoyuan Li, Alexandre Bartel, Tegawendé F. Bissyandé, Jacques Klein

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

8 Citations (Scopus)

Abstract

We discuss the capability of a new feature set for malware detection based on potential component leaks (PCLs). PCLs are defined as sensitive data-flows that involve Android inter-component communications. We show that PCLs are common in Android apps and that malicious applications indeed manipulate significantly more PCLs than benign apps. Then, we evaluate a machine learning-based approach relying on PCLs. Experimental validations show high performance for identifying malware, demonstrating that PCLs can be used for discriminating malicious apps from benign apps.

Original languageEnglish
Title of host publicationProceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015
EditorsJian Zhang, Bhavani Thuraisingham
Place of PublicationPiscataway NJ USA
PublisherIEEE, Institute of Electrical and Electronics Engineers
Pages195-200
Number of pages6
ISBN (Electronic)9781467379892, 9781467379885
DOIs
Publication statusPublished - 2015
Externally publishedYes
EventIEEE International Conference on Software Quality, Reliability and Security 2015 - Vancouver, Canada
Duration: 3 Aug 20155 Aug 2015
https://paris.utdallas.edu/qrs15/

Conference

ConferenceIEEE International Conference on Software Quality, Reliability and Security 2015
Abbreviated titleQRS 2015
CountryCanada
CityVancouver
Period3/08/155/08/15
Internet address

Cite this