{"id":"https://openalex.org/W4409325838","doi":"https://doi.org/10.1109/tnsm.2025.3559255","title":"ArchSentry: Enhanced Android Malware Detection via Hierarchical Semantic Extraction","display_name":"ArchSentry: Enhanced Android Malware Detection via Hierarchical Semantic Extraction","publication_year":2025,"publication_date":"2025-04-10","ids":{"openalex":"https://openalex.org/W4409325838","doi":"https://doi.org/10.1109/tnsm.2025.3559255"},"language":"en","primary_location":{"id":"doi:10.1109/tnsm.2025.3559255","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tnsm.2025.3559255","pdf_url":null,"source":{"id":"https://openalex.org/S173527311","display_name":"IEEE Transactions on Network and Service Management","issn_l":"1932-4537","issn":["1932-4537","2373-7379"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Network and Service Management","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5018085680","display_name":"Tianbo Wang","orcid":"https://orcid.org/0000-0002-0227-9557"},"institutions":[{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Tianbo Wang","raw_affiliation_strings":["School of Cyber Science and Technology, Beihang University, Beijing, China"],"affiliations":[{"raw_affiliation_string":"School of Cyber Science and Technology, Beihang University, Beijing, China","institution_ids":["https://openalex.org/I82880672"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5024442396","display_name":"Mengyao Liu","orcid":"https://orcid.org/0000-0002-7476-8106"},"institutions":[{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Mengyao Liu","raw_affiliation_strings":["School of Cyber Science and Technology, Beihang University, Beijing, China"],"affiliations":[{"raw_affiliation_string":"School of Cyber Science and Technology, Beihang University, Beijing, China","institution_ids":["https://openalex.org/I82880672"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5061012198","display_name":"Huacheng Li","orcid":"https://orcid.org/0000-0002-2943-7463"},"institutions":[{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Huacheng Li","raw_affiliation_strings":["School of Computer Science and Engineering, Beihang University, Beijing, China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science and Engineering, Beihang University, Beijing, China","institution_ids":["https://openalex.org/I82880672"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100671319","display_name":"Lei Zhao","orcid":"https://orcid.org/0000-0003-2412-7279"},"institutions":[{"id":"https://openalex.org/I37461747","display_name":"Wuhan University","ror":"https://ror.org/033vjfk17","country_code":"CN","type":"education","lineage":["https://openalex.org/I37461747"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Lei Zhao","raw_affiliation_strings":["School of Cyber Science and Engineering, Wuhan University, Wuhan, China"],"affiliations":[{"raw_affiliation_string":"School of Cyber Science and Engineering, Wuhan University, Wuhan, China","institution_ids":["https://openalex.org/I37461747"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5054910681","display_name":"Changnan Jiang","orcid":null},"institutions":[{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Changnan Jiang","raw_affiliation_strings":["School of Computer Science and Engineering, Beihang University, Beijing, China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science and Engineering, Beihang University, Beijing, China","institution_ids":["https://openalex.org/I82880672"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5035296513","display_name":"Chunhe Xia","orcid":"https://orcid.org/0000-0003-4424-8449"},"institutions":[{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Chunhe Xia","raw_affiliation_strings":["School of Computer Science and Engineering, Beihang University, Beijing, China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science and Engineering, Beihang University, Beijing, China","institution_ids":["https://openalex.org/I82880672"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5084818732","display_name":"Baojiang Cui","orcid":"https://orcid.org/0000-0001-6937-4068"},"institutions":[{"id":"https://openalex.org/I139759216","display_name":"Beijing University of Posts and Telecommunications","ror":"https://ror.org/04w9fbh59","country_code":"CN","type":"education","lineage":["https://openalex.org/I139759216"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Baojiang Cui","raw_affiliation_strings":["School of Cyberspace Security, Beijing University of Posts and Telecommunications, Beijing, China"],"affiliations":[{"raw_affiliation_string":"School of Cyberspace Security, Beijing University of Posts and Telecommunications, Beijing, China","institution_ids":["https://openalex.org/I139759216"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5018085680"],"corresponding_institution_ids":["https://openalex.org/I82880672"],"apc_list":null,"apc_paid":null,"fwci":11.3029,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.98669817,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":100},"biblio":{"volume":"22","issue":"3","first_page":"2822","last_page":"2837"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12799","display_name":"Mobile and Web Applications","score":0.9847000241279602,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9782000184059143,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8762173652648926},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.7581391930580139},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.6065064072608948},{"id":"https://openalex.org/keywords/android-malware","display_name":"Android malware","score":0.543734073638916},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.3997276723384857},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.34191223978996277},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.321539044380188}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8762173652648926},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.7581391930580139},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.6065064072608948},{"id":"https://openalex.org/C2989133298","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android malware","level":3,"score":0.543734073638916},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.3997276723384857},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.34191223978996277},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.321539044380188}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tnsm.2025.3559255","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tnsm.2025.3559255","pdf_url":null,"source":{"id":"https://openalex.org/S173527311","display_name":"IEEE Transactions on Network and Service Management","issn_l":"1932-4537","issn":["1932-4537","2373-7379"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Network and Service Management","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":42,"referenced_works":["https://openalex.org/W103340358","https://openalex.org/W2100495367","https://openalex.org/W2122672392","https://openalex.org/W2140095007","https://openalex.org/W2156744053","https://openalex.org/W2216498498","https://openalex.org/W2244992438","https://openalex.org/W2743104969","https://openalex.org/W2744095836","https://openalex.org/W2744097819","https://openalex.org/W2789983203","https://openalex.org/W2792736988","https://openalex.org/W2809616033","https://openalex.org/W2885070483","https://openalex.org/W2897812226","https://openalex.org/W2900275727","https://openalex.org/W2943383044","https://openalex.org/W2962756421","https://openalex.org/W2963204406","https://openalex.org/W2964015378","https://openalex.org/W2966270452","https://openalex.org/W2969244304","https://openalex.org/W2982705228","https://openalex.org/W2986232939","https://openalex.org/W3129608404","https://openalex.org/W3147879240","https://openalex.org/W3172909833","https://openalex.org/W3176588063","https://openalex.org/W3195672100","https://openalex.org/W4290566675","https://openalex.org/W4318384306","https://openalex.org/W4319777770","https://openalex.org/W4322730961","https://openalex.org/W4365446886","https://openalex.org/W4385372623","https://openalex.org/W4386852161","https://openalex.org/W4389612953","https://openalex.org/W4393279091","https://openalex.org/W4405103929","https://openalex.org/W6753153400","https://openalex.org/W6866520852","https://openalex.org/W6866803181"],"related_works":["https://openalex.org/W2560361988","https://openalex.org/W2507113366","https://openalex.org/W2591124010","https://openalex.org/W3200508744","https://openalex.org/W3025122950","https://openalex.org/W2311926078","https://openalex.org/W2895504842","https://openalex.org/W1565885216","https://openalex.org/W2717179875","https://openalex.org/W4249118297"],"abstract_inverted_index":{"Android":[0,42,53,69,186],"malware":[1,13,54],"poses":[2],"a":[3,80,102,119,132,180,189],"significant":[4],"challenge":[5],"for":[6,166,185],"mobile":[7],"platforms.":[8],"To":[9,44,117],"evade":[10],"detection,":[11],"contemporary":[12],"variants":[14],"use":[15],"API":[16],"substitution":[17],"or":[18],"obfuscation":[19],"techniques":[20],"to":[21,68,87,92,111],"hide":[22],"malicious":[23],"activities":[24],"and":[25,64,76,96,113,127,142],"mask":[26],"their":[27,65],"shallow":[28],"semantic":[29,39,58,90,94,104],"characteristics.":[30],"However,":[31],"existing":[32],"research":[33],"lacks":[34],"analysis":[35],"of":[36,122,155,201],"the":[37,73,123,146,151,199],"hierarchical":[38,57],"associated":[40],"with":[41,188],"apps.":[43],"address":[45],"this":[46],"problem,":[47],"we":[48,61,84,100,130],"propose":[49],"ArchSentry,":[50],"an":[51],"enhanced":[52],"detection":[55,183],"via":[56],"extraction.":[59],"First,":[60],"select":[62],"entities":[63],"relationships":[66],"relevant":[67],"software":[70,74,125],"behavior":[71],"through":[72],"architecture":[75],"represent":[77,88],"them":[78],"using":[79],"heterogeneous":[81],"graph.":[82],"Then,":[83],"structure":[85],"meta-paths":[86],"rich":[89],"information":[91],"achieve":[93,118],"enhancement":[95],"improve":[97,128],"efficiency.":[98],"Next,":[99],"design":[101],"meta-path":[103],"selection":[105],"method":[106],"based":[107,136],"on":[108,137,172],"KL":[109],"Divergence":[110],"identify":[112],"eliminate":[114],"redundant":[115],"features.":[116],"comprehensive":[120,167],"representation":[121],"overall":[124],"semantics":[126],"performance,":[129],"construct":[131],"feature":[133,168],"fusion":[134,164],"approach":[135],"Restricted":[138],"Boltzmann":[139],"Machines":[140],"(RBM)":[141],"AutoEncoder":[143],"(AE)":[144],"during":[145],"pre-training":[147],"phase,":[148],"while":[149],"preserving":[150],"probability":[152],"distribution":[153],"characteristics":[154],"various":[156],"meta-paths.":[157],"Finally,":[158],"Deep":[159],"Neural":[160],"Networks":[161],"(DNN)":[162],"process":[163],"features":[165],"sets.":[169],"Experimental":[170],"results":[171,197],"real-world":[173],"application":[174],"samples":[175],"indicate":[176],"that":[177],"ArchSentry":[178],"achieves":[179],"remarkable":[181],"99.2%":[182],"rate":[184,193],"malware,":[187],"low":[190],"false":[191],"positive":[192],"below":[194],"1%.":[195],"These":[196],"surpass":[198],"performance":[200],"current":[202],"state-of-the-art":[203],"approaches.":[204]},"counts_by_year":[{"year":2026,"cited_by_count":5},{"year":2025,"cited_by_count":3}],"updated_date":"2026-04-09T08:11:56.329763","created_date":"2025-10-10T00:00:00"}