No Cover Image

Journal article 254 views 43 downloads

Android-IoT Malware Classification and Detection Approach Using Deep URL Features Analysis

Farhan Ullah Orcid Logo, Cheng Cheng Orcid Logo, Leonardo Mostarda Orcid Logo, Sohail Jabbar

Journal of Database Management, Volume: 34, Issue: 2, Pages: 1 - 26

Swansea University Author: Cheng Cheng Orcid Logo

  • 65950.VoR.pdf

    PDF | Version of Record

    This article published as an Open Access article distributed under the terms of the Creative Commons Attribution License.

    Download (1.44MB)

Check full text

DOI (Published version): 10.4018/jdm.318414

Abstract

Currently, malware attacks pose a high risk to compromise the security of Android-IoT apps. These threats have the potential to steal critical information, causing economic, social, and financial harm. Because of their constant availability on the network, Android apps are easily attacked by URL-bas...

Full description

Published in: Journal of Database Management
ISSN: 1063-8016 1533-8010
Published: IGI Global 2023
Online Access: Check full text

URI: https://cronfa.swan.ac.uk/Record/cronfa65950
Tags: Add Tag
No Tags, Be the first to tag this record!
Abstract: Currently, malware attacks pose a high risk to compromise the security of Android-IoT apps. These threats have the potential to steal critical information, causing economic, social, and financial harm. Because of their constant availability on the network, Android apps are easily attacked by URL-based traffic. In this paper, an Android malware classification and detection approach using deep and broad URL feature mining is proposed. This study entails the development of a novel traffic data preprocessing and transformation method that can detect malicious apps using network traffic analysis. The encrypted URL-based traffic is mined to decrypt the transmitted data. To extract the sequenced features, the N-gram analysis method is used, and afterward, the singular value decomposition (SVD) method is utilized to reduce the features while preserving the actual semantics. The latent features are extracted using the latent semantic analysis tool. Finally, CNN-LSTM, a multi-view deep learning approach, is designed for effective malware classification and detection.
Keywords: Android, Deep Learning, HTTP flow analysis, Internet of Things, LSA, Malware detection, N-gram, TextSemantics
College: Faculty of Science and Engineering
Issue: 2
Start Page: 1
End Page: 26