Classified risk assessment method of Android application based on multi-factor clustering selection
Most existing risk assessments of Android applications directly assign weights to factors according to experience, and calculate security risks by counting the frequency statistics of few factors.A new method for risk assessment of Android applications is proposed, which can provide both quantitativ...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
POSTS&TELECOM PRESS Co., LTD
2021-04-01
|
| Series: | 网络与信息安全学报 |
| Subjects: | |
| Online Access: | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2021023 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841529878123380736 |
|---|---|
| author | Fan CHAO Zhi YANG Xuehui DU Bing HAN |
| author_facet | Fan CHAO Zhi YANG Xuehui DU Bing HAN |
| author_sort | Fan CHAO |
| collection | DOAJ |
| description | Most existing risk assessments of Android applications directly assign weights to factors according to experience, and calculate security risks by counting the frequency statistics of few factors.A new method for risk assessment of Android applications is proposed, which can provide both quantitative and qualitative assessment.This method integrates multiple risk factors such as system permissions, API calls, the action properties of Intent Filter, and data flow.The risks of factors are assigned based on their risk classification and addition, and the weights of factor subsets are distributed based on hierarchical clustering.Experiments show that the assessment results can effectively reflect the real security risks of Android applications. |
| format | Article |
| id | doaj-art-50fb22eaac4547d1b486bb4d5c03308f |
| institution | Kabale University |
| issn | 2096-109X |
| language | English |
| publishDate | 2021-04-01 |
| publisher | POSTS&TELECOM PRESS Co., LTD |
| record_format | Article |
| series | 网络与信息安全学报 |
| spelling | doaj-art-50fb22eaac4547d1b486bb4d5c03308f2025-01-15T03:15:01ZengPOSTS&TELECOM PRESS Co., LTD网络与信息安全学报2096-109X2021-04-01716117359566521Classified risk assessment method of Android application based on multi-factor clustering selectionFan CHAOZhi YANGXuehui DUBing HANMost existing risk assessments of Android applications directly assign weights to factors according to experience, and calculate security risks by counting the frequency statistics of few factors.A new method for risk assessment of Android applications is proposed, which can provide both quantitative and qualitative assessment.This method integrates multiple risk factors such as system permissions, API calls, the action properties of Intent Filter, and data flow.The risks of factors are assigned based on their risk classification and addition, and the weights of factor subsets are distributed based on hierarchical clustering.Experiments show that the assessment results can effectively reflect the real security risks of Android applications.http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2021023Androidrisk assessmentsecurity threatstatic analysishierarchical clustering |
| spellingShingle | Fan CHAO Zhi YANG Xuehui DU Bing HAN Classified risk assessment method of Android application based on multi-factor clustering selection 网络与信息安全学报 Android risk assessment security threat static analysis hierarchical clustering |
| title | Classified risk assessment method of Android application based on multi-factor clustering selection |
| title_full | Classified risk assessment method of Android application based on multi-factor clustering selection |
| title_fullStr | Classified risk assessment method of Android application based on multi-factor clustering selection |
| title_full_unstemmed | Classified risk assessment method of Android application based on multi-factor clustering selection |
| title_short | Classified risk assessment method of Android application based on multi-factor clustering selection |
| title_sort | classified risk assessment method of android application based on multi factor clustering selection |
| topic | Android risk assessment security threat static analysis hierarchical clustering |
| url | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2021023 |
| work_keys_str_mv | AT fanchao classifiedriskassessmentmethodofandroidapplicationbasedonmultifactorclusteringselection AT zhiyang classifiedriskassessmentmethodofandroidapplicationbasedonmultifactorclusteringselection AT xuehuidu classifiedriskassessmentmethodofandroidapplicationbasedonmultifactorclusteringselection AT binghan classifiedriskassessmentmethodofandroidapplicationbasedonmultifactorclusteringselection |