{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,15]],"date-time":"2026-05-15T10:27:41Z","timestamp":1778840861896,"version":"3.51.4"},"reference-count":31,"publisher":"Springer Science and Business Media LLC","issue":"16","license":[{"start":{"date-parts":[[2018,8,4]],"date-time":"2018-08-04T00:00:00Z","timestamp":1533340800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Soft Comput"],"published-print":{"date-parts":[[2019,8]]},"DOI":"10.1007\/s00500-018-3377-5","type":"journal-article","created":{"date-parts":[[2018,8,4]],"date-time":"2018-08-04T06:41:21Z","timestamp":1533364881000},"page":"7303-7319","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":14,"title":["Entropy-based security risk measurement for Android mobile applications"],"prefix":"10.1007","volume":"23","author":[{"given":"Mahmood","family":"Deypir","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,8,4]]},"reference":[{"key":"3377_CR1","doi-asserted-by":"publisher","first-page":"86","DOI":"10.1007\/978-3-319-04283-1_6","volume-title":"Security and privacy in communication networks","author":"Y Aafer","year":"2013","unstructured":"Aafer Y, Du W, Yin H (2013) DroidAPIMiner: mining API-level features for robust malware detection in Android. In: Zhou J (ed) Security and privacy in communication networks. Springer, Berlin, pp 86\u2013103"},{"key":"3377_CR2","doi-asserted-by":"publisher","unstructured":"Arp D, Spreitzenbarth M, Hubner M, Gascon H, Rieck K (2014) DREBIN: effective and explainable detection of Android malware in your pocket. In: NDSS. \n                    https:\/\/doi.org\/10.14722\/ndss.2014.23247","DOI":"10.14722\/ndss.2014.23247"},{"key":"3377_CR3","unstructured":"Au KWY, Zhou YF, Huang Z, Lie D (2012) Pscout: analyzing the Android permission specification. In: Proceedings of the 2012 ACM conference on Computer and communications security. ACM, pp 217\u2013228"},{"key":"3377_CR4","doi-asserted-by":"crossref","unstructured":"Barrera D, Kayacik HG, van Oorschot PC, Somayaji A (2010) A methodology for empirical analysis of permission-based security models and its application to Android. In: Proceedings of the 17th ACM conference on Computer and communications security. ACM, pp 73\u201384","DOI":"10.1145\/1866307.1866317"},{"key":"3377_CR5","doi-asserted-by":"crossref","unstructured":"Burguera I, Zurutuza U, Nadjm-Tehrani S (2011).Crowdroid: behavior-based malware detection system for Android. In: Proceedings of the 1st ACM workshop on security and privacy in smartphones and mobile devices. ACM, pp 15\u201326","DOI":"10.1145\/2046614.2046619"},{"issue":"4","key":"3377_CR6","doi-asserted-by":"publisher","first-page":"400","DOI":"10.1109\/TDSC.2014.2355839","volume":"12","author":"L Cen","year":"2015","unstructured":"Cen L, Gates C, Si L, Li N (2015) A probabilistic discriminative model for Android malware detection with decompiled source code. IEEE Trans Dependable Secure Comput 12(4):400\u2013412","journal-title":"IEEE Trans Dependable Secure Comput"},{"key":"3377_CR7","doi-asserted-by":"crossref","unstructured":"Chakradeo S, Reaves B, Traynor P, Enck W (2013) Mast: triage for market-scale mobile malware analysis. In: Proceedings of the sixth ACM conference on security and privacy in wireless and mobile networks. ACM, pp 13\u201324","DOI":"10.1145\/2462096.2462100"},{"key":"3377_CR8","doi-asserted-by":"crossref","unstructured":"Christodorescu M, Jha S, Kruegel C (2008) Mining specifications of malicious behavior. In: Proceedings of the 1st India software engineering conference. ACM, pp 5\u201314","DOI":"10.1145\/1342211.1342215"},{"key":"3377_CR9","doi-asserted-by":"crossref","unstructured":"Desnos A (2012) Android: static analysis using similarity distance. In: 2012 45th Hawaii international conference on system science (HICSS). IEEE, pp 5394\u20135403","DOI":"10.1109\/HICSS.2012.114"},{"key":"3377_CR10","first-page":"20","volume":"40","author":"M Deypir","year":"2018","unstructured":"Deypir M, Horri A (2018) Instance based security risk value estimation for Android applications. J Inf Secur Appl 40:20\u201330","journal-title":"J Inf Secur Appl"},{"key":"3377_CR11","doi-asserted-by":"crossref","unstructured":"Enck W, Ongtang M, McDaniel P (2009) On lightweight mobile phone application certification. In: Proceedings of the 16th ACM conference on Computer and communications security. ACM, pp 235\u2013245","DOI":"10.1145\/1653662.1653691"},{"key":"3377_CR12","doi-asserted-by":"publisher","first-page":"205","DOI":"10.1016\/j.cose.2014.02.007","volume":"43","author":"Z Fang","year":"2014","unstructured":"Fang Z, Han W, Li Y (2014) Permission based Android security: issues and countermeasures. Comput Secur 43:205\u2013218","journal-title":"Comput Secur"},{"key":"3377_CR13","doi-asserted-by":"crossref","unstructured":"Felt AP, Ha E, Egelman S, Haney A, Chin E, Wagner D (2012) Android permissions: user attention, comprehension, and behavior. Technical report of UCB\/EECS-2012-26, UC Berkeley","DOI":"10.1145\/2335356.2335360"},{"issue":"3","key":"3377_CR14","doi-asserted-by":"publisher","first-page":"252","DOI":"10.1109\/TDSC.2013.58","volume":"11","author":"CS Gates","year":"2014","unstructured":"Gates CS, Chen J, Li N, Proctor RW (2014a) Effective risk communication for Android apps. IEEE Trans Dependable Secure Comput 11(3):252\u2013265","journal-title":"IEEE Trans Dependable Secure Comput"},{"issue":"3","key":"3377_CR15","doi-asserted-by":"publisher","first-page":"238","DOI":"10.1109\/TDSC.2014.2302293","volume":"11","author":"CS Gates","year":"2014","unstructured":"Gates CS, Li N, Peng H, Sarma B, Qi Y, Potharaju R, Molloy I (2014b) Generating summary risk scores for mobile applications. IEEE Trans Dependable Secure Comput 11(3):238\u2013251","journal-title":"IEEE Trans Dependable Secure Comput"},{"key":"3377_CR16","doi-asserted-by":"publisher","first-page":"192","DOI":"10.1016\/j.cose.2014.10.005","volume":"49","author":"D Geneiatakis","year":"2015","unstructured":"Geneiatakis D, Fovino IN, Kounelis I, Stirparo P (2015) A permission verification approach for Android mobile applications. Comput Secur 49:192\u2013205","journal-title":"Comput Secur"},{"key":"3377_CR17","unstructured":"Ham HS, Choi MJ (2013) Analysis of Android malware detection performance using machine learning classifiers. In: 2013 international conference on ICT Convergence (ICTC). IEEE, pp 490\u2013495"},{"key":"3377_CR18","doi-asserted-by":"publisher","first-page":"550","DOI":"10.1016\/j.jss.2017.07.042","volume":"137","author":"AK Jha","year":"2018","unstructured":"Jha AK, Lee WJ (2018) An empirical study of collaborative model and its security risk in Android. J Syst Softw 137:550\u2013562","journal-title":"J Syst Softw"},{"key":"3377_CR19","doi-asserted-by":"publisher","first-page":"68","DOI":"10.1007\/978-3-642-34638-5_6","volume-title":"Financial cryptography and data security","author":"PG Kelley","year":"2012","unstructured":"Kelley PG, Consolvo S, Cranor LF, Jung J, Sadeh N, Wetherall D (2012) A conundrum of permissions: installing applications on an Android smartphone. In: Blyth J, Dietrich S, Camp LJ (eds) Financial cryptography and data security. Springer, Berlin, pp 68\u201379"},{"key":"3377_CR20","doi-asserted-by":"crossref","unstructured":"Kelley PG, Cranor LF, Sadeh N (2013) Privacy as part of the app decision-making process. In: Proceedings of the SIGCHI conference on human factors in computing systems. ACM, pp 3393\u20133402","DOI":"10.1145\/2470654.2466466"},{"issue":"24","key":"3377_CR21","doi-asserted-by":"publisher","first-page":"7405","DOI":"10.1007\/s00500-016-2283-y","volume":"21","author":"A Mart\u00edn","year":"2017","unstructured":"Mart\u00edn A, Men\u00e9ndez HD, Camacho D (2017) MOCDroid: multi-objective evolutionary classifier for Android malware detection. Soft comput 21(24):7405\u20137415","journal-title":"Soft comput"},{"key":"3377_CR22","doi-asserted-by":"crossref","unstructured":"Peng H, Gates C, Sarma B, Li N, Qi Y, Potharaju R, Molloy I (2012) Using probabilistic generative models for ranking risks of Android apps. In: Proceedings of the 2012 ACM conference on Computer and communications security. ACM, pp 241\u2013252","DOI":"10.1145\/2382196.2382224"},{"key":"3377_CR23","unstructured":"Quinlan R (1983) Learning efficient classification procedures. In: Michalski, Carbonell & Mitchell (eds.) Machine Learning: an artificial intelligence approach. Morgan Kaufmann, pp 463\u2013482"},{"key":"3377_CR24","doi-asserted-by":"publisher","first-page":"108","DOI":"10.1007\/978-3-540-70542-0_6","volume-title":"Detection of intrusions and malware, and vulnerability assessment","author":"K Rieck","year":"2008","unstructured":"Rieck K, Holz T, Willems C, D\u00fcssel P, Laskov P (2008) Learning and classification of malware behavior. In: Zamboni D (ed) Detection of intrusions and malware, and vulnerability assessment. Springer, Berlin, pp 108\u2013125"},{"key":"3377_CR25","doi-asserted-by":"crossref","unstructured":"Sarma BP, Li N, Gates C, Potharaju R, Nita-Rotaru C, Molloy I (2012) Android permissions: a perspective combining risks and benefits. In: Proceedings of the 17th ACM symposium on access control models and technologies. ACM, pp 13\u201322","DOI":"10.1145\/2295136.2295141"},{"key":"3377_CR26","doi-asserted-by":"crossref","unstructured":"Schmidt AD, Bye R, Schmidt HG, Clausen J, Kiraz O, Y\u00fcksel K, Albayrak S (2009) Static analysis of executables for collaborative malware detection on Android. In: IEEE international conference on communications, 2009. ICC\u201909. IEEE, pp 1\u20135","DOI":"10.1109\/ICC.2009.5199486"},{"key":"3377_CR27","doi-asserted-by":"publisher","first-page":"235","DOI":"10.1007\/978-3-642-17758-3_17","volume-title":"Mobile wireless middleware, operating systems, and applications","author":"A Shabtai","year":"2010","unstructured":"Shabtai A, Elovici Y (2010) Applying behavioral detection on Android-based devices. In: Cai Y, Magedanz T, Li M, Xia J, Giannelli C (eds) Mobile wireless middleware, operating systems, and applications. Springer, Berlin, pp 235\u2013249"},{"key":"3377_CR28","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.diin.2015.01.001","volume":"13","author":"KA Talha","year":"2015","unstructured":"Talha KA, Alper DI, Aydin C (2015) APK Auditor: permission-based Android malware detection system. Digit Investig 13:1\u201314","journal-title":"Digit Investig"},{"issue":"3","key":"3377_CR29","doi-asserted-by":"publisher","first-page":"987","DOI":"10.1016\/j.future.2017.01.019","volume":"78","author":"W Wang","year":"2018","unstructured":"Wang W, Li Y, Wang X, Liu J, Zhang X (2018) Detecting Android malicious apps and categorizing benign apps with ensemble of classifiers. Future Gener Comput Syst 78(3):987\u2013994","journal-title":"Future Gener Comput Syst"},{"key":"3377_CR30","doi-asserted-by":"crossref","unstructured":"Zhou Y, Jiang X (2012) Dissecting Android malware: characterization and evolution. In: 2012 IEEE symposium on security and privacy (SP). IEEE, pp 95\u2013109","DOI":"10.1109\/SP.2012.16"},{"key":"3377_CR31","unstructured":"Zhou Y, Wang Z, Zhou W, Jiang X (2012) Hey, you, get off of my market: detecting malicious apps in official and alternative android markets. In: NDSS. Proceedings of the 19th Network and Distributed System Security Symposium (NDSS 2012)\nSan Diego, CA"}],"container-title":["Soft Computing"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s00500-018-3377-5.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s00500-018-3377-5\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s00500-018-3377-5.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,8,3]],"date-time":"2019-08-03T19:03:23Z","timestamp":1564859003000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s00500-018-3377-5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,8,4]]},"references-count":31,"journal-issue":{"issue":"16","published-print":{"date-parts":[[2019,8]]}},"alternative-id":["3377"],"URL":"https:\/\/doi.org\/10.1007\/s00500-018-3377-5","relation":{},"ISSN":["1432-7643","1433-7479"],"issn-type":[{"value":"1432-7643","type":"print"},{"value":"1433-7479","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018,8,4]]},"assertion":[{"value":"4 August 2018","order":1,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Compliance with ethical standards"}},{"value":"The author declares that he has no conflict of interest regarding the publication of this paper.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}}]}}