A Systematic Overview of Android Malware Detection

Due to the completely open-source nature of Android, the exploitable vulnerability of malware attacks is increasing. To stay ahead of other similar review work attempting to deal with the serious security problem of the Android environment, this work not only summarizes the approaches in the malware classification phase but also lays emphasis on the Android feature selection algorithm and presents some areas neglected in previous works in the field of Android malware detection, like limitations and commonly applied datasets in machine learning-based models. In this paper, the Android OS environment, feature selection, classification models, and confronted challenges of machine learning detection are described in detail. Based on the brief introduction to Android background knowledge, feature selection methods are elaborated from key perspectives as feature extraction, raw data preprocessing, valid feature subsets selection, and machine learning-based selection models. For the algorithms of the malware classification, machine learning methods are categorized according to different standards to present an all-around view. Furthermore, this paper focuses on the study of deterioration problems and evasion attacks in machine learning detectors.

Automated summary

This paper provides a detailed description of the Android OS environment, feature selection, malware classification algorithms, and challenges faced by machine learning detection. By elaborating on key perspectives such as feature extraction, data preprocessing, and model selection, it comprehensively discusses the methods of malware detection. Additionally, it focuses on the study of deterioration issues and evasion attacks in machine learning detectors.