With the increasing popularity of mobile-app services, malicious software is increasing as well. Accordingly, the interest of the scientific community in Machine and Deep Learning solutions for detecting and classifying malware traffic is growing. In this work, we provide a fair assessment of the performance of a number of data-driven strategies to detect and classify Android malware traffic. Three models are taken into account (Decision Tree, Random Forest, and 1-D Convolutional Neural Network) considering both flat (i.e. non-hierarchical) and hierarchical approaches. The experimental analysis performed using a state-of-art dataset (CIC-AAGM2017) reports that Random Forest exhibits the best performance in a flat setup, while moving to a hierarchical approach could cause significant variation in precision and recall. Such results push for further investigating advanced hierarchical setups and learning schemes.

A Comparison of Machine and Deep Learning Models for Detection and Classification of Android Malware Traffic / Bovenzi, G.; Cerasuolo, F.; Montieri, A.; Nascita, A.; Persico, V.; Pescape', A.. - (2022), pp. 1-6. (Intervento presentato al convegno Symposium on Computers and Communications (ISCC) tenutosi a Rhodes, Greece nel 30 June 2022 - 03 July 2022) [10.1109/ISCC55528.2022.9912986].

A Comparison of Machine and Deep Learning Models for Detection and Classification of Android Malware Traffic

Bovenzi G.;Montieri A.
;
Nascita A.;Persico V.;Pescape' A.
2022

Abstract

With the increasing popularity of mobile-app services, malicious software is increasing as well. Accordingly, the interest of the scientific community in Machine and Deep Learning solutions for detecting and classifying malware traffic is growing. In this work, we provide a fair assessment of the performance of a number of data-driven strategies to detect and classify Android malware traffic. Three models are taken into account (Decision Tree, Random Forest, and 1-D Convolutional Neural Network) considering both flat (i.e. non-hierarchical) and hierarchical approaches. The experimental analysis performed using a state-of-art dataset (CIC-AAGM2017) reports that Random Forest exhibits the best performance in a flat setup, while moving to a hierarchical approach could cause significant variation in precision and recall. Such results push for further investigating advanced hierarchical setups and learning schemes.
2022
978-1-6654-9792-3
A Comparison of Machine and Deep Learning Models for Detection and Classification of Android Malware Traffic / Bovenzi, G.; Cerasuolo, F.; Montieri, A.; Nascita, A.; Persico, V.; Pescape', A.. - (2022), pp. 1-6. (Intervento presentato al convegno Symposium on Computers and Communications (ISCC) tenutosi a Rhodes, Greece nel 30 June 2022 - 03 July 2022) [10.1109/ISCC55528.2022.9912986].
File in questo prodotto:
File Dimensione Formato  
A_Comparison_of_Machine_and_Deep_Learning_Models_for_Detection_and_Classification_of_Android_Malware_Traffic.pdf

solo utenti autorizzati

Tipologia: Versione Editoriale (PDF)
Licenza: Copyright dell'editore
Dimensione 383.14 kB
Formato Adobe PDF
383.14 kB Adobe PDF   Visualizza/Apri   Richiedi una copia

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11588/904860
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 13
  • ???jsp.display-item.citation.isi??? 4
social impact