{"id":"https://openalex.org/W2922293372","doi":"https://doi.org/10.5220/0007248701830192","title":"Permission-based Risk Signals for App Behaviour Characterization in Android Apps","display_name":"Permission-based Risk Signals for App Behaviour Characterization in Android Apps","publication_year":2019,"publication_date":"2019-01-01","ids":{"openalex":"https://openalex.org/W2922293372","doi":"https://doi.org/10.5220/0007248701830192","mag":"2922293372"},"language":"en","primary_location":{"id":"doi:10.5220/0007248701830192","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0007248701830192","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 5th International Conference on Information Systems Security and Privacy","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.5220/0007248701830192","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5072300664","display_name":"Oluwafemi Olukoya","orcid":"https://orcid.org/0000-0003-2771-2553"},"institutions":[{"id":"https://openalex.org/I7882870","display_name":"University of Glasgow","ror":"https://ror.org/00vtgdb53","country_code":"GB","type":"education","lineage":["https://openalex.org/I7882870"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Oluwafemi Olukoya","raw_affiliation_strings":["School of Computing Science, University of Glasgow and U.K., --- Select a Country ---"],"affiliations":[{"raw_affiliation_string":"School of Computing Science, University of Glasgow and U.K., --- Select a Country ---","institution_ids":["https://openalex.org/I7882870"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026946305","display_name":"Lewis Mackenzie","orcid":"https://orcid.org/0000-0002-0868-0456"},"institutions":[{"id":"https://openalex.org/I7882870","display_name":"University of Glasgow","ror":"https://ror.org/00vtgdb53","country_code":"GB","type":"education","lineage":["https://openalex.org/I7882870"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Lewis Mackenzie","raw_affiliation_strings":["School of Computing Science, University of Glasgow and U.K., --- Select a Country ---"],"affiliations":[{"raw_affiliation_string":"School of Computing Science, University of Glasgow and U.K., --- Select a Country ---","institution_ids":["https://openalex.org/I7882870"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5021326742","display_name":"Inah Omoronyia","orcid":"https://orcid.org/0000-0001-5357-0945"},"institutions":[{"id":"https://openalex.org/I7882870","display_name":"University of Glasgow","ror":"https://ror.org/00vtgdb53","country_code":"GB","type":"education","lineage":["https://openalex.org/I7882870"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Inah Omoronyia","raw_affiliation_strings":["School of Computing Science, University of Glasgow and U.K., --- Select a Country ---"],"affiliations":[{"raw_affiliation_string":"School of Computing Science, University of Glasgow and U.K., --- Select a Country ---","institution_ids":["https://openalex.org/I7882870"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5072300664"],"corresponding_institution_ids":["https://openalex.org/I7882870"],"apc_list":null,"apc_paid":null,"fwci":0.3338,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.52969815,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"183","last_page":"192"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.991100013256073,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9887999892234802,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/permission","display_name":"Permission","score":0.9801421761512756},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.8335174918174744},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8082622289657593},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7874832153320312},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5276713967323303},{"id":"https://openalex.org/keywords/mobile-apps","display_name":"Mobile apps","score":0.46828386187553406},{"id":"https://openalex.org/keywords/android-malware","display_name":"Android malware","score":0.4318743348121643},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.2396964132785797},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.238186776638031}],"concepts":[{"id":"https://openalex.org/C2779089604","wikidata":"https://www.wikidata.org/wiki/Q7169333","display_name":"Permission","level":2,"score":0.9801421761512756},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.8335174918174744},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8082622289657593},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7874832153320312},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5276713967323303},{"id":"https://openalex.org/C2988145974","wikidata":"https://www.wikidata.org/wiki/Q620615","display_name":"Mobile apps","level":2,"score":0.46828386187553406},{"id":"https://openalex.org/C2989133298","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android malware","level":3,"score":0.4318743348121643},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.2396964132785797},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.238186776638031},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.5220/0007248701830192","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0007248701830192","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 5th International Conference on Information Systems Security and Privacy","raw_type":"proceedings-article"},{"id":"pmh:oai:eprints.gla.ac.uk:174735","is_oa":true,"landing_page_url":"http://eprints.gla.ac.uk/view/author/38345.html>","pdf_url":null,"source":{"id":"https://openalex.org/S4210235606","display_name":"ENLIGHTEN (Jurnal Bimbingan dan Konseling Islam)","issn_l":"2622-8912","issn":["2622-8912","2622-8920"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":null,"raw_type":"PeerReviewed"},{"id":"pmh:oai:pure.qub.ac.uk/portal:publications/d916a990-53cc-4776-94b0-ff81932b2783","is_oa":false,"landing_page_url":"https://pure.qub.ac.uk/en/publications/d916a990-53cc-4776-94b0-ff81932b2783","pdf_url":null,"source":{"id":"https://openalex.org/S4306402319","display_name":"Research Portal (Queen's University Belfast)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I126231945","host_organization_name":"Queen's University Belfast","host_organization_lineage":["https://openalex.org/I126231945"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Olukoya , O , Mackenzie , L &amp; Omoronyia , I 2019 , Permission-based Risk Signals for App Behaviour Characterization in Android Apps . in Proceedings of the 5th International Conference on Information Systems Security and Privacy . pp. 183-192 . https://doi.org/10.5220/0007248701830192","raw_type":"contributionToPeriodical"}],"best_oa_location":{"id":"doi:10.5220/0007248701830192","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0007248701830192","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 5th International Conference on Information Systems Security and Privacy","raw_type":"proceedings-article"},"sustainable_development_goals":[{"score":0.5,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":21,"referenced_works":["https://openalex.org/W81879861","https://openalex.org/W154677184","https://openalex.org/W1489067988","https://openalex.org/W1986330503","https://openalex.org/W2003276999","https://openalex.org/W2028616373","https://openalex.org/W2033811191","https://openalex.org/W2044117262","https://openalex.org/W2058180826","https://openalex.org/W2086648145","https://openalex.org/W2087970742","https://openalex.org/W2092712591","https://openalex.org/W2107643854","https://openalex.org/W2107906795","https://openalex.org/W2114275288","https://openalex.org/W2122672392","https://openalex.org/W2142145056","https://openalex.org/W2156744053","https://openalex.org/W2399891510","https://openalex.org/W2511979442","https://openalex.org/W2620844046"],"related_works":["https://openalex.org/W2316685381","https://openalex.org/W2249350383","https://openalex.org/W2072937473","https://openalex.org/W2755037920","https://openalex.org/W4210309948","https://openalex.org/W4388923452","https://openalex.org/W2056388267","https://openalex.org/W2717179875","https://openalex.org/W4249118297","https://openalex.org/W2786416059"],"abstract_inverted_index":{"With":[0],"the":[1,5,14,25,37,68,75,136],"parallel":[2],"growth":[3],"of":[4,13,32,39,62,70,124,146],"Android":[6,147],"operating":[7],"system":[8],"and":[9,126,131],"mobile":[10,20],"malware,":[11,44],"one":[12],"ways":[15],"to":[16,114,142],"stay":[17],"protected":[18],"from":[19,85],"malware":[21],"is":[22],"by":[23,95],"observing":[24],"permissions":[26,76],"requested.":[27],"However,":[28],"without":[29,45],"careful":[30],"consideration":[31],"these":[33,120],"permissions,":[34],"users":[35],"run":[36],"risk":[38,57,69,144],"an":[40,71,98],"installed":[41],"app":[42,72,99],"being":[43],"any":[46],"warning":[47],"that":[48,135],"might":[49],"characterize":[50],"its":[51],"nature.":[52],"We":[53,118],"propose":[54],"a":[55,60,80,86,150],"permission-based":[56],"signal":[58],"using":[59,79,122],"taxonomy":[61],"sensitive":[63],"permissions.":[64],"Firstly,":[65],"we":[66,91,106],"analyse":[67],"based":[73,110],"on":[74,111],"it":[77,103],"requests,":[78],"permission":[81,88,93],"sensitivity":[82],"index":[83],"computed":[84],"risky":[87],"set.":[89],"Secondly,":[90],"evaluate":[92,107,115,119],"mismatch":[94],"checking":[96],"what":[97,102],"requires":[100],"against":[101],"requests.":[104],"Thirdly,":[105],"security":[108],"rules":[109],"our":[112,132],"metrics":[113],"corresponding":[116],"risks.":[117],"factors":[121],"datasets":[123],"benign":[125],"malicious":[127],"apps":[128,148],"(43580":[129],"apps)":[130],"result":[133],"demonstrates":[134],"proposed":[137],"framework":[138],"can":[139],"be":[140],"used":[141],"improve":[143],"signalling":[145],"with":[149],"95%":[151],"accuracy.":[152]},"counts_by_year":[{"year":2021,"cited_by_count":1},{"year":2019,"cited_by_count":1}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}