Android App-Collusion Detection Using A Kernel-Based Support Vector Machine

Md. Faiz Iqbal Faiz, Md. Anwar Hussain, Ningrinla Marchang

Android App-Collusion Detection Using A Kernel-Based Support Vector Machine

Md. Faiz Iqbal Faiz, Md. Anwar Hussain, Ningrinla Marchang

Abstract

Android application collusion is an attack scenario where two or more apps work together to achieve a malicious goal by executing a threat. The threat can be in the form of information theft, service misuse, etc. This paper proposes a novel method to detect Android app-collusion. The technique consists of using a kernel-based Support Vector Machine (SVM) and a decision function. We train the kernel-based SVM with a dataset of benign and malicious Android applications. Then, we use the parameters of the trained SVM and the decision function to detect Android app-collusion. The decision function is a lightweight discriminative function which uses a small set of parameters as compared to the number of training samples used for training kernel-based classifier. Our method is multi-purpose, which means we can use the decision function to detect both colluding apps and single malicious apps.

Requires Subscription PDF

Published

2020-06-06

How to Cite

Md. Faiz Iqbal Faiz, Md. Anwar Hussain, Ningrinla Marchang. (2020). Android App-Collusion Detection Using A Kernel-Based Support Vector Machine. International Journal of Advanced Science and Technology, 29(04), 7098 -. Retrieved from http://sersc.org/journals/index.php/IJAST/article/view/28118

Download Citation

Issue

Vol. 29 No. 04 (2020): Vol 29 No. 4 (2020)

Section

Articles