{"id":"https://openalex.org/W4385688277","doi":"https://doi.org/10.1145/3600160.3605057","title":"Graph-Based Android Malware Detection and Categorization through BERT Transformer","display_name":"Graph-Based Android Malware Detection and Categorization through BERT Transformer","publication_year":2023,"publication_date":"2023-08-09","ids":{"openalex":"https://openalex.org/W4385688277","doi":"https://doi.org/10.1145/3600160.3605057"},"language":"en","primary_location":{"id":"doi:10.1145/3600160.3605057","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3600160.3605057","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3600160.3605057","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 18th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3600160.3605057","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5043827499","display_name":"Andrea Saracino","orcid":"https://orcid.org/0000-0001-8149-9322"},"institutions":[{"id":"https://openalex.org/I4210130157","display_name":"Institute of Informatics and Telematics","ror":"https://ror.org/02gdcn153","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210130157","https://openalex.org/I4210155236"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Andrea Saracino","raw_affiliation_strings":["Trust, security and Privacy / Istituto di Informatica e Telematica / Consiglio Nazionale delle Ricerche, Consiglio Nazionale delle Ricerche, Italy"],"raw_orcid":"https://orcid.org/0000-0001-8149-9322","affiliations":[{"raw_affiliation_string":"Trust, security and Privacy / Istituto di Informatica e Telematica / Consiglio Nazionale delle Ricerche, Consiglio Nazionale delle Ricerche, Italy","institution_ids":["https://openalex.org/I4210130157"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5088391249","display_name":"Marco Simoni","orcid":"https://orcid.org/0009-0000-4170-503X"},"institutions":[{"id":"https://openalex.org/I4210130157","display_name":"Institute of Informatics and Telematics","ror":"https://ror.org/02gdcn153","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210130157","https://openalex.org/I4210155236"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Marco Simoni","raw_affiliation_strings":["Trust, security and Privacy / Istituto di Informatica e Telematica / Consiglio Nazionale delle Ricerche, Universita degli studi di Roma La Sapienza, Italy"],"raw_orcid":"https://orcid.org/0009-0000-4170-503X","affiliations":[{"raw_affiliation_string":"Trust, security and Privacy / Istituto di Informatica e Telematica / Consiglio Nazionale delle Ricerche, Universita degli studi di Roma La Sapienza, Italy","institution_ids":["https://openalex.org/I4210130157"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I4210130157"],"apc_list":null,"apc_paid":null,"fwci":2.6096,"has_fulltext":true,"cited_by_count":15,"citation_normalized_percentile":{"value":0.90845387,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"7"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9865000247955322,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9822999835014343,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8427868485450745},{"id":"https://openalex.org/keywords/android-malware","display_name":"Android malware","score":0.8105899095535278},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7961640357971191},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.7758455276489258},{"id":"https://openalex.org/keywords/categorization","display_name":"Categorization","score":0.5674022436141968},{"id":"https://openalex.org/keywords/encoder","display_name":"Encoder","score":0.45989659428596497},{"id":"https://openalex.org/keywords/graph","display_name":"Graph","score":0.426982045173645},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3257797956466675},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.30294162034988403},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.2689899802207947},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.25706031918525696}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8427868485450745},{"id":"https://openalex.org/C2989133298","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android malware","level":3,"score":0.8105899095535278},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7961640357971191},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.7758455276489258},{"id":"https://openalex.org/C94124525","wikidata":"https://www.wikidata.org/wiki/Q912550","display_name":"Categorization","level":2,"score":0.5674022436141968},{"id":"https://openalex.org/C118505674","wikidata":"https://www.wikidata.org/wiki/Q42586063","display_name":"Encoder","level":2,"score":0.45989659428596497},{"id":"https://openalex.org/C132525143","wikidata":"https://www.wikidata.org/wiki/Q141488","display_name":"Graph","level":2,"score":0.426982045173645},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3257797956466675},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.30294162034988403},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.2689899802207947},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.25706031918525696}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/3600160.3605057","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3600160.3605057","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3600160.3605057","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 18th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"},{"id":"pmh:oai:iris.uniroma1.it:11573/1724719","is_oa":true,"landing_page_url":"https://hdl.handle.net/11573/1724719","pdf_url":null,"source":{"id":"https://openalex.org/S4377196107","display_name":"IRIS Research product catalog (Sapienza University of Rome)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"info:eu-repo/semantics/conferenceObject"},{"id":"pmh:oai:www.iris.sssup.it:11382/572011","is_oa":false,"landing_page_url":"https://hdl.handle.net/11382/572011","pdf_url":null,"source":{"id":"https://openalex.org/S4377196376","display_name":"CINECA IRIS Institutional Research Information System (Sant'Anna School of Advanced Studies)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I162290304","host_organization_name":"Scuola Superiore Sant'Anna","host_organization_lineage":["https://openalex.org/I162290304"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"info:eu-repo/semantics/conferenceObject"}],"best_oa_location":{"id":"doi:10.1145/3600160.3605057","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3600160.3605057","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3600160.3605057","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 18th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.4099999964237213}],"awards":[{"id":"https://openalex.org/G4320622773","display_name":null,"funder_award_id":"952652","funder_id":"https://openalex.org/F4320332999","funder_display_name":"Horizon 2020 Framework Programme"}],"funders":[{"id":"https://openalex.org/F4320332999","display_name":"Horizon 2020 Framework Programme","ror":"https://ror.org/00k4n6c32"}],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W4385688277.pdf"},"referenced_works_count":14,"referenced_works":["https://openalex.org/W2006724638","https://openalex.org/W2025088090","https://openalex.org/W2104839588","https://openalex.org/W2324464293","https://openalex.org/W2618530766","https://openalex.org/W2980708516","https://openalex.org/W3015902623","https://openalex.org/W3105429705","https://openalex.org/W3210231570","https://openalex.org/W4205635956","https://openalex.org/W4211249255","https://openalex.org/W4223985186","https://openalex.org/W4295700754","https://openalex.org/W4296105182"],"related_works":["https://openalex.org/W2782775281","https://openalex.org/W2560361988","https://openalex.org/W2507113366","https://openalex.org/W2591124010","https://openalex.org/W3200508744","https://openalex.org/W4311848503","https://openalex.org/W3025122950","https://openalex.org/W2895504842","https://openalex.org/W2717179875","https://openalex.org/W4249118297"],"abstract_inverted_index":{"In":[0],"this":[1],"paper,":[2],"we":[3],"propose":[4],"a":[5,54,86],"novel":[6],"approach":[7,43,69],"to":[8,25],"Android":[9,32,62,92,103],"malware":[10,93],"analysis":[11],"and":[12,48,82,94],"categorization":[13],"that":[14,67],"leverages":[15],"the":[16,38,45,58,83,98],"power":[17],"of":[18,57],"BERT":[19],"(Bidirectional":[20],"Encoder":[21],"Representations":[22],"from":[23,31],"Transformers)":[24],"classify":[26],"API":[27,33,39,51,75],"call":[28,76],"sequences":[29,77],"generated":[30],"Call":[34,40],"Graph.":[35],"By":[36],"utilizing":[37],"Graph,":[41],"our":[42,68],"captures":[44],"intricate":[46],"relationships":[47],"dependencies":[49],"between":[50],"calls,":[52],"enabling":[53],"deeper":[55],"understanding":[56],"behavior":[59],"exhibited":[60],"by":[61,101],"malware.":[63],"Our":[64],"results":[65],"show":[66],"achieves":[70],"high":[71],"accuracy":[72],"in":[73],"classifying":[74],"as":[78],"malicious":[79,102],"or":[80],"benign":[81],"method":[84],"provides":[85],"promising":[87],"solution":[88],"also":[89],"for":[90],"categorizing":[91],"can":[95],"help":[96],"mitigate":[97],"risks":[99],"posed":[100],"applications.":[104]},"counts_by_year":[{"year":2026,"cited_by_count":4},{"year":2025,"cited_by_count":8},{"year":2024,"cited_by_count":3}],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}
