A Lightweight malware detection technique based on hybrid fuzzy simulated annealing clustering in Android apps

Collins Chimeleze; Norziana Jamil; Nazik Alturki; Zuhaira Muhammad Zain

Egyptian Informatics Journal (Dec 2024)

A Lightweight malware detection technique based on hybrid fuzzy simulated annealing clustering in Android apps

Collins Chimeleze,
Norziana Jamil,
Nazik Alturki,
Zuhaira Muhammad Zain

Affiliations

Collins Chimeleze: Institute of Informatics and Computing in Energy, Universiti Tenaga Nasional, Malaysia; Corresponding authors at: Institute of Informatics and Computing in Energy, Universiti Tenaga Nasional, Malaysia. Department of Information Systems and Security, College of IT, United Arab Emirates University, United Arab Emirates (N. Jamil).
Norziana Jamil: Department of Information Systems and Security, College of IT, United Arab Emirates University, P.O. Box 15551, Al Ain, Abu Dhabi, United Arab Emirates; Corresponding authors at: Institute of Informatics and Computing in Energy, Universiti Tenaga Nasional, Malaysia. Department of Information Systems and Security, College of IT, United Arab Emirates University, United Arab Emirates (N. Jamil).
Nazik Alturki: Department of Information Systems, College of Computer and Information Science, Princess Nourah Bint Abdulrahman University, P.O Box 84428, Riyadh 11671, Saudi Arabia
Zuhaira Muhammad Zain: Department of Information Systems, College of Computer and Information Science, Princess Nourah Bint Abdulrahman University, P.O Box 84428, Riyadh 11671, Saudi Arabia

Journal volume & issue: Vol. 28
p. 100560

Abstract

Read online

The growing complexity of cyber threats has shifted the focus from merely identifying threats to detecting their origins, resulting in stronger defenses against malware. Traditional detection techniques are often inadequate against increasingly sophisticated malware, prompting this research article to propose a new clustering method—fuzzy C-mean simulated annealing (FCMSA)—to enhance malware detection through machine learning. The FCMSA clustering technique improves performance by minimizing vulnerabilities, reducing outliers, and optimizing large datasets. The proposed technique selects high-quality clusters from Android app permissions and, using lightGBM, classifies Android malware. Experimental results show that the proposed FCMSA-GBM technique achieves superior accuracy (99.21%) and precision (99.70%) compared to other prevalent cluster-based Android malware detection techniques, while also lowering error rates and execution time.

Published in Egyptian Informatics Journal

ISSN: 1110-8665 (Print)
Publisher: Elsevier
Country of publisher: Netherlands
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: https://www.sciencedirect.com/journal/egyptian-informatics-journal

About the journal

Abstract

Keywords