With the increasing popularity of mobile-app services, malicious software is increasing as well. Accordingly, the interest of the scientific community in Machine and Deep Learning solutions for detecting and classifying malware traffic is growing. In this work, we provide a fair assessment of the performance of a number of data-driven strategies to detect and classify Android malware traffic. Three models are taken into account (Decision Tree, Random Forest, and 1-D Convolutional Neural Network) considering both flat (i.e. non-hierarchical) and hierarchical approaches. The experimental analysis performed using a state-of-art dataset (CIC-AAGM2017) reports that Random Forest exhibits the best performance in a flat setup, while moving to a hierarchical approach could cause significant variation in precision and recall. Such results push for further investigating advanced hierarchical setups and learning schemes.
A Comparison of Machine and Deep Learning Models for Detection and Classification of Android Malware Traffic / Bovenzi, G.; Cerasuolo, F.; Montieri, A.; Nascita, A.; Persico, V.; Pescape', A.. - (2022), pp. 1-6. (Intervento presentato al convegno Symposium on Computers and Communications (ISCC) tenutosi a Rhodes, Greece nel 30 June 2022 - 03 July 2022) [10.1109/ISCC55528.2022.9912986].
A Comparison of Machine and Deep Learning Models for Detection and Classification of Android Malware Traffic
Bovenzi G.;Montieri A.
;Nascita A.;Persico V.;Pescape' A.
2022
Abstract
With the increasing popularity of mobile-app services, malicious software is increasing as well. Accordingly, the interest of the scientific community in Machine and Deep Learning solutions for detecting and classifying malware traffic is growing. In this work, we provide a fair assessment of the performance of a number of data-driven strategies to detect and classify Android malware traffic. Three models are taken into account (Decision Tree, Random Forest, and 1-D Convolutional Neural Network) considering both flat (i.e. non-hierarchical) and hierarchical approaches. The experimental analysis performed using a state-of-art dataset (CIC-AAGM2017) reports that Random Forest exhibits the best performance in a flat setup, while moving to a hierarchical approach could cause significant variation in precision and recall. Such results push for further investigating advanced hierarchical setups and learning schemes.| File | Dimensione | Formato | |
|---|---|---|---|
|
A_Comparison_of_Machine_and_Deep_Learning_Models_for_Detection_and_Classification_of_Android_Malware_Traffic.pdf
solo utenti autorizzati
Tipologia:
Versione Editoriale (PDF)
Licenza:
Copyright dell'editore
Dimensione
383.14 kB
Formato
Adobe PDF
|
383.14 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
