Skip to main content
SpringerLink
Log in
Book cover

International Conference on Soft Computing and Data Mining

SCDM 2018: Recent Advances on Soft Computing and Data Mining pp 485–494Cite as

Android Malware Detection Based on Network Traffic Using Decision Tree Algorithm

  • Conference paper
  • First Online:

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 700))

Abstract

Android mobile operating system has well developed and gained absolute popularity among user. Although android is an open source operating system, it fits user daily life requirement nowadays. However, this is the reason why android malware keep on increasing every year. There are various method used to detect the occurrence of android malware such as based on static or dynamic analysis. Static analysis is favourable approach because it is quick and inexpensive. However, the static analysis unable to monitor the malicious application behavior during runtime. Therefore, we proposed a dynamic detection technique based on network traffic which records the application behavior during runtime. We consider seven network traffic features extracted from Drebin and Contagiodumpset dataset. The Drebin dataset achieved higher accuracy value with 98.4% as compared to Contagiodumpset dataset when tested using J48 decision tree algorithm.

Please note that the LNCS Editorial assumes that all authors have used the western naming convention, with given names preceding surnames. This determines the structure of the names in the running heads and the author index.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   169.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

References

  1. Bisson, D.: Trojan found in more than 100 Android apps on Google Play Store. Cluley Associates Ltd. https://www.grahamcluley.com/advertising-trojan-100-android-apps-google-play-store/

  2. Nazish: Dissecting android malware: characterization and evolution summarized by: Nazish Asad. 4 (2011)

    Google Scholar 

  3. Burguera, I., Zurutuza, U., Nadjm-Tehrani, S.: Crowdroid: behavior-based malware detection system for android. In: Proceedings of 1st ACM Work. Security and Privacy in Smartphones and Mobile Devices—SPSM 2011, p. 15 (2011)

    Google Scholar 

  4. Shabtai, A., Fledel, Y., Elovici, Y.: Automated static code analysis for classifying android applications using machine learning. In: Proceedings of the 2010 International Conference on Computational Intelligence and Security, pp. 329–333 (2010)

    Google Scholar 

  5. Wu, D.J., Mao, C.H., Wei, T.E., Lee, H.M., Wu, K.P.: DroidMat: Android malware detection through manifest and API calls tracing. In: Proceedings of 2012 7th Asia Jt. Conference Information Security Asia JCIS 2012, pp. 62–69 (2012)

    Google Scholar 

  6. Suarez-Tangil, G., Dash, S.K., Ahmadi, M., Kinder, J., Giacinto, G., Cavallaro, L.: DroidSieve: fast and accurate classification of obfuscated android malware. In: Proceedings of the Seventh ACM on Conference on Data and Application Security and Privacy (CODASPY 2017), pp. 309–320 (2017)

    Google Scholar 

  7. Afonso, V.M., de Amorim, M.F., Grégio, A.R.A., Junquera, G.B., de Geus, P.L.: Identifying Android malware using dynamically obtained features. J. Comput. Virol. Hacking Tech. 11(1), 9–17 (2015)

    Article  Google Scholar 

  8. Shabtai, A., Kanonov, U., Elovici, Y., Glezer, C., Weiss, Y.: Andromaly: A behavioral malware detection framework for android devices. J. Intell. Inf. Syst. 38(1), 161–190 (2012)

    Article  Google Scholar 

  9. Malik, J., Kaushal, R.: CREDROID: Android malware detection by network traffic analysis. In: Proceedings of the 1st ACM Workshop on Privacy-Aware Mobile Computing (PAMCO 2016), pp. 28–36 (2016)

    Google Scholar 

  10. Sharma, D.: Android malware detection using decision trees and network traffic. 7(4), 1970–1974 (2016)

    Google Scholar 

Download references

Acknowledgements

The authors express appreciation to the Universiti Tun Hussein Onn Malaysia (UTHM). This research is supported by Short Term Grant vot number U653 and Gates IT Solution Sdn. Bhd. under its publication scheme.

Author information

Authors and Affiliations

  1. Information Security Interest Group (ISIG), Faculty of Computer Science and Information Technology, Universiti Tun Hussein Onn, Parit Raja, Johor, Malaysia

    Aqil Zulkifli, Isredza Rahmi A. Hamid & Zubaile Abdullah

  2. Faculty of Information Technology and Communication, Universiti Teknikal Malaysia Melaka, 76100, Durian Tunggal, Malaysia

    Wahidah Md Shah

Authors
  1. Aqil Zulkifli
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Isredza Rahmi A. Hamid
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Wahidah Md Shah
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Zubaile Abdullah
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Isredza Rahmi A. Hamid .

Editor information

Editors and Affiliations

  1. Faculty of Computer Science and Information Technology, Universiti Tun Hussein Onn Malaysia, Batu Pahat, Johor, Malaysia

    Rozaida Ghazali

  2. Faculty of Computer Science and Information Technology, Universiti Tun Hussein Onn Malaysia, Batu Pahat, Johor, Malaysia

    Mustafa Mat Deris

  3. Faculty of Computer Science and Information Technology, Universiti Tun Hussein Onn Malaysia, Batu Pahat, Johor, Malaysia

    Nazri Mohd Nawi

  4. School of Information Technology, Deakin University, Geelong, Victoria, Australia

    Jemal H. Abawajy

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer International Publishing AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Zulkifli, A., Hamid, I.R.A., Shah, W.M., Abdullah, Z. (2018). Android Malware Detection Based on Network Traffic Using Decision Tree Algorithm. In: Ghazali, R., Deris, M., Nawi, N., Abawajy, J. (eds) Recent Advances on Soft Computing and Data Mining. SCDM 2018. Advances in Intelligent Systems and Computing, vol 700. Springer, Cham. https://doi.org/10.1007/978-3-319-72550-5_46

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-72550-5_46

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-72549-9

  • Online ISBN: 978-3-319-72550-5

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation