Android Malware Classification Based on Permission Categories Using Extreme Gradient Boosting

Published in Proceedings of the 5th International Conference on Sustainable Information Engineering and Technology, 2020

Recommended citation: T. N. Turnip, A. Situmorang, A. Lumbantobing, J. Marpaung, and S. I. G. Situmeang, "Android Malware Classification Based on Permission Categories Using Extreme Gradient Boosting," in ACM International Conference Proceeding Series, Nov. 2020, pp. 190-194. doi: 10.1145/3427423.3427427. https://dl.acm.org/doi/pdf/10.1145/3427423.3427427

Mobile malware has become the centerpiece of most security and privacy threats on the Internet. Especially with the openness of the Android market, many malicious apps are hiding in a large number of applications, which makes malware detection more challenging. In this study, eXtreme Gradient Boosting (XGBoost) is used to establish the Android-based malware detection and classification framework. The framework utilizes APK permission categories extracted from Android applications. The comparison of modeling results demonstrates that the XGBoost is especially suitable for Android malware classification and can achieve 74.40% of F1-score with real-world Android application sets.

Download paper here

Recommended citation: T. N. Turnip, A. Situmorang, A. Lumbantobing, J. Marpaung, and S. I. G. Situmeang, “Android Malware Classification Based on Permission Categories Using Extreme Gradient Boosting,” in ACM International Conference Proceeding Series, Nov. 2020, pp. 190-194. doi: 10.1145/3427423.3427427.