Android Malware Application Detection Method Based on BPSO-NB

doi:10.3969/j.issn.1006-2475.2017.04.022

Abstract

Abstract: In order to improve the efficiency of Android malware application detection, the binary particle swarm optimization (BPSO) is used for optimal selection of complete ensemble of original features, combined with the Nave Bayesian (NB) classification algorithm，an Android malware detection method based on BPSO-NB algorithm is proposed. First, this method uses static analysis for unknown applications to extract the permission information in an AndroidManifest.XML file as a feature. Then, it uses the BPSO algorithm to optimize selected classification feature, and uses the classification accuracy of NB algorithm as the evaluation function. Finally, NB classification algorithm is used to construct classifier for Android malicious applications. Through cross experiment, BPSO-NB classification equipment has higher classification accuracy, and the optimal selection of BPSO algorithm classification characteristics under the condition of the security classification accuracy can effectively improve the efficiency of detection.

Key words: binary particle swarm, Nave Bayesian, feature selection, malware application detection, static analysis

CLC Number:

TP301

HAN Jing-dan, SUN Lei, WANG Shuai-li, WANG Ze-wu. Android Malware Application Detection Method Based on BPSO-NB[J]. Computer and Modernization, doi: 10.3969/j.issn.1006-2475.2017.04.022.

References

［1］ Yerima S Y, Sezer S, Mcwilliams G. Analysis of Bayesian classification-based approaches for Android malware detection［J］. IET Information Security, 2014,8(1):25-36.
［2］ Ham H S, Kim H H, Kim M S, et al. Linear SVM-based Android malware detection for reliable IoT services［J］. Journal of Applied Mathematics, 2014,2014:Article ID 594501.
［3］ Yerima S Y, Sezer S, Muttik I. Android malware detection using parallel machine learning classifiers［C］// Proceedings of the 8th International Conference on Next Generation Mobile Applications, Services and Technologies. 2014:37-42.
［4］许艳萍,伍淳华,侯美佳,等. 基于改进朴素贝叶斯的Android恶意应用检测技术［J］. 北京邮电大学学报, 2016,39(2):43-47.
［5］胡静,华俊,姜羽,等. 一种基于属性关系的特征选择算法［J］. 控制与决策, 2015(10):1903-1906.
［6］蒋良孝. 朴素贝叶斯分类器及其改进算法研究［D］. 武汉：中国地质大学, 2009.
［7］刘建华,杨荣华,孙水华. 离散二进制粒子群算法分析［J］. 南京大学学报(自然科学版), 2011,47(5):504-514.
［8］ Kennedy J, Eberhart R C. A discrete binary version of the particle swarm algorithm［C］// 1997 IEEE International Conference on Systems, Man, and Cybernetics. 1997,5:4104-4108.
［9］ Harrington P. 机器学习实战［M］. 李锐,李鹏,曲亚东,等译. 北京:人民邮电出版社, 2013.
［10］刘逸. 粒子群优化算法的改进及应用研究［D］. 西安:西安电子科技大学, 2013.
［11］杨欢,张玉清,胡予濮,等. 基于权限频繁模式挖掘算法的Android恶意应用检测方法［J］. 通信学报, 2013(S1):106-115.
［12］刘白璐,杨雅辉,沈晴霓. 一种基于遗传算法的入侵早期特征选择方法［J］. 小型微型计算机系统, 2015,36(1):111-115.
［13］王晨曦,林耀进,刘景华,等. 基于最近邻互信息的特征选择算法［J］. 计算机工程与应用, 2015,52(18):74-78.
［14］卿斯汉. Android安全研究进展［J］. 软件学报, 2016,27(1):45-71.
［15］王志强,张玉清,刘奇旭,等. 一种Android恶意行为检测算法［J］. 西安电子科技大学学报(自然科学版), 2015,42(3):8-14.
［16］焦四辈,应凌云,杨轶,等. 一种抗混淆的大规模Android应用相似性检测方法［J］. 计算机研究与发展, 2014,51(7):1446-1457.
［17］杨欢,张玉清,胡予濮,等. 基于多类特征的Android应用恶意行为检测系统［J］. 计算机学报, 2014,37(1):15-27.

[1]	WANG Yang, CHEN Mei, LI Hui. FOCoR: A Course Recommendation Approach Based on Feature Selection Optimization [J]. Computer and Modernization, 2022, 0(10): 1-7.
[2]	ZHAO Ying-li, ZHU Xu. Association Analysis of Image Genetic Data Based on Group Sparse Joint Leraning [J]. Computer and Modernization, 2022, 0(08): 43-49.
[3]	MO Yun. EEG Decoding Method Based on Hybrid Feature Selection [J]. Computer and Modernization, 2022, 0(04): 92-96.
[4]	ZHAO Yan-ping, WANG Fang, XIA Yang. Short Text Classification Method Based on Support Vector Machine [J]. Computer and Modernization, 2022, 0(02): 92-96.
[5]	ZHANG Dong-fang, CHEN Hai-yan, YUAN Li-gang. S2R2: Semi-supervised Feature Selection Based on Analysis of Relevance and Redundancy [J]. Computer and Modernization, 2021, 0(09): 113-120.
[6]	DAI Ji-peng, SHAO Feng-jing, SUN Ren-cheng. Short Text Classification Based on Improved CHI and TF-IDF [J]. Computer and Modernization, 2021, 0(06): 6-11.
[7]	CHEN Si-yu, ZHUANG Yi, LI Jing. Multi Feature Load Forecasting Model for LSTM Network in Mobile Cloud Computing [J]. Computer and Modernization, 2021, 0(06): 74-85.
[8]	YANG Qiu-liang, WANG Yu, YANG Xing-li, LI Ji-hong. Classification of Ground-based Meteorological Cloud Images Based on Feature Selection Technique of Mutual Information F-statistics [J]. Computer and Modernization, 2021, 0(02): 18-23.
[9]	JIANG Wan-ming1,2, GUO Chun1,2, JIANG Chao-hui1,2. A Low-rate DDoS Attack Detection Method Based on BiLSTM [J]. Computer and Modernization, 2020, 0(05): 120-.
[10]	YAN Yi, LI Bo, CHEN Shou-ming, LIN Qiang, HUANG Ju-tao, Wen Bo-jian. A Causal Feature Selection Algorithm for Feedback Networks and Its Applications [J]. Computer and Modernization, 2019, 0(12): 95-.
[11]	LI Fu-xing，MENG Zu-qiang . An Improved Feature Selection Algorithm Based on Category Distinguished Words [J]. Computer and Modernization, 2019, 0(03): 73-.
[12]	MA Jian-hong， LIU Guang-sen， YAO Shuang， YANG Zhi . Text Feature Selection and Text Representation for Short Essays [J]. Computer and Modernization, 2019, 0(03): 95-.
[13]	LIU Wei, YANG Hui-jie, LIU Shou-yin. A Feature Selection Algorithm of Battery SOH Based on ACCA-FCM and SVM-RFE [J]. Computer and Modernization, 2018, 0(01): 11-18.
[14]	GUO Xiao-ming1,2, SUN Dan1,2. Internal Threat Detection Based on Nave Bayesian Theory [J]. Computer and Modernization, 2017, 0(7): 101-106.
[15]	WU Ke-yan, ZHANG Shu-ya, HUANG Yan-zi, LIU Shou-yin. Feature Set Optimization Algorithm of Fall Detection Based on Neighborhood Consistency and DBPSO [J]. Computer and Modernization, 2017, 0(11): 6-12.