Malicious Application Traffic Detection and Identification for Mobile Android Devices
Abstract
With the popularity of Android devices, the number of malicious applications has been increasing. This paper briefly introduced malicious applications for Android devices, used a sensitivity coefficient-based feature selection method to select traffic features, detected, and identified malicious application traffic with k-means, support vector machine (SVM) and multi-layer perceptron (MLP) methods, and conducted experiments at CIC-AndMal2017. It was found that the accuracy was high when 40 features were selected. The running time of the MLP method was the shortest, 0.02 s. The accuracy of the K-means algorithm was 86.75%, showing poor performance, and the accuracy of the MLP method was 99.87%, showing the best performance. The experimental results demonstrate the effectiveness of the MLP method for monitoring and identifying malicious application traffic. The MLP method can be applied to actual mobile Android devices.
DOI:
https://doi.org/10.31449/inf.v46i8.4248Downloads
Published
11/14/2022
How to Cite
Niu, G. (2022). Malicious Application Traffic Detection and Identification for Mobile Android Devices. Informatica, 46(8). https://doi.org/10.31449/inf.v46i8.4248
Issue
Section
Online-only
License
Authors retain copyright in their work. By submitting to and publishing with Informatica, authors grant the publisher (Slovene Society Informatika) the non-exclusive right to publish, reproduce, and distribute the article and to identify itself as the original publisher.
All articles are published under the Creative Commons Attribution license CC BY 3.0. Under this license, others may share and adapt the work for any purpose, provided appropriate credit is given and changes (if any) are indicated.
Authors may deposit and share the submitted version, accepted manuscript, and published version, provided the original publication in Informatica is properly cited.
