{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,7]],"date-time":"2026-05-07T16:16:41Z","timestamp":1778170601545,"version":"3.51.4"},"reference-count":32,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2019,8,19]],"date-time":"2019-08-19T00:00:00Z","timestamp":1566172800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2019,8,19]],"date-time":"2019-08-19T00:00:00Z","timestamp":1566172800000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Mobile Netw Appl"],"published-print":{"date-parts":[[2020,2]]},"DOI":"10.1007\/s11036-019-01248-0","type":"journal-article","created":{"date-parts":[[2019,8,19]],"date-time":"2019-08-19T05:02:38Z","timestamp":1566190958000},"page":"180-192","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":45,"title":["AdDroid: Rule-Based Machine Learning Framework for Android Malware Analysis"],"prefix":"10.1007","volume":"25","author":[{"given":"Anam","family":"Mehtab","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Waleed Bin","family":"Shahid","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tahreem","family":"Yaqoob","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Muhammad Faisal","family":"Amjad","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2437-4870","authenticated-orcid":false,"given":"Haider","family":"Abbas","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hammad","family":"Afzal","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Malik Najmus","family":"Saqib","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,8,19]]},"reference":[{"key":"1248_CR1","unstructured":"Apple Vs Android, A comparative study 2017 (2018) Available: \nhttps:\/\/android.jlelse.eu\/apple-vs-android-a-comparative-study-2017-c5799a0a1683"},{"key":"1248_CR2","first-page":"12","volume":"1","author":"N Gandhewar","year":"2010","unstructured":"Gandhewar N, Sheikh R (2010) Google Android: An emerging software platform for mobile devices. Int J Comput Sci Eng 1:12\u201317","journal-title":"Int J Comput Sci Eng"},{"key":"1248_CR3","unstructured":"Number of available applications in the Google Play Store from December 2009 to September 2018 (2018) Available: \nhttps:\/\/www.statista.com\/statistics\/266210\/number-of-available-applications-in-the-google-play-store\/"},{"key":"1248_CR4","doi-asserted-by":"crossref","unstructured":"Felt AP, Finifter M, Chin E, Hanna S, Wagner D (2011) A survey of mobile malware in the wild. In: Proceedings of the 1st ACM workshop on Security and privacy in smartphones and mobile devices, pp 3\u201314","DOI":"10.1145\/2046614.2046618"},{"key":"1248_CR5","doi-asserted-by":"crossref","unstructured":"Felt AP, Chin E, Hanna S, Song D, Wagner D (2011) Android permissions demystified. In: Proceedings of the 18th ACM conference on Computer and communications security, pp 627\u2013638","DOI":"10.1145\/2046707.2046779"},{"key":"1248_CR6","doi-asserted-by":"crossref","unstructured":"Huang C-Y, Tsai Y-T, Hsu C-H (2013) Performance evaluation on permission-based detection for android malware. In: Advances in Intelligent Systems and Applications-Volume 2, ed:, pp 111\u2013120. Springer","DOI":"10.1007\/978-3-642-35473-1_12"},{"key":"1248_CR7","doi-asserted-by":"crossref","unstructured":"Zhang M, Duan Y, Yin H, Zhao Z (2014) Semantics-aware android malware classification using weighted contextual api dependency graphs. In: Proceedings of ACM SIGSAC Conference on Computer and Communications Security, pp 1105\u20131116","DOI":"10.1145\/2660267.2660359"},{"key":"1248_CR8","unstructured":"Wu D-J, Mao C-H, Wei T-E, Lee H-M, Wu K-P (2012) Droidmat: Android malware detection through manifest and api calls tracing. In: 2012 Seventh Asia Joint Conference on Information Security (Asia JCIS), pp 62\u201369"},{"key":"1248_CR9","doi-asserted-by":"crossref","unstructured":"Sahs J, Khan L (2012) A machine learning approach to android malware detection. In: Intelligence and security informatics conference (eisic), 2012 european, pp 141\u2013147","DOI":"10.1109\/EISIC.2012.34"},{"key":"1248_CR10","doi-asserted-by":"crossref","unstructured":"Burguera I, Zurutuza U, Nadjm-Tehrani S (2011) Crowdroid: behavior-based malware detection system for android. In: Proceedings of the 1st ACM workshop on Security and privacy in smartphones and mobile devices, pp 15\u201326","DOI":"10.1145\/2046614.2046619"},{"key":"1248_CR11","first-page":"6","volume":"5","author":"SMA Ghani","year":"2015","unstructured":"Ghani SMA, Abdollah MF, Yusof R, Mas\u2019ud MZ (2015) Recognizing API features for malware detection using static analysis. J Wirel Netw Commun 5:6\u201312","journal-title":"J Wirel Netw Commun"},{"key":"1248_CR12","doi-asserted-by":"crossref","unstructured":"Peng H, Gates C, Sarma B, Li N, Qi Y, Potharaju R et al (2012) Using probabilistic generative models for ranking risks of android apps In: Proceedings of the 2012 ACM conference on Computer and communications security, pp 241\u2013252","DOI":"10.1145\/2382196.2382224"},{"key":"1248_CR13","doi-asserted-by":"crossref","unstructured":"Sarma BP, Li N, Gates C, Potharaju R, Nita-Rotaru C, Molloy I (2012) Android permissions: a perspective combining risks and benefits. In: Proceedings of the 17th ACM symposium on Access Control Models and Technologies, pp 13\u201322","DOI":"10.1145\/2295136.2295141"},{"key":"1248_CR14","unstructured":"Do Q, Martini B, Choo K-KR (2014) Enhancing user privacy on android mobile devices via permissions removal. In: 2014 47th Hawaii International Conference on System Sciences (HICSS), pp 5070\u20135079"},{"key":"1248_CR15","doi-asserted-by":"crossref","unstructured":"Arp D, Spreitzenbarth M, Hubner M, Gascon H, Rieck K, Siemens C (2014) DREBIN: Effective and Explainable Detection of Android Malware in Your Pocket. In: NDSS","DOI":"10.14722\/ndss.2014.23247"},{"key":"1248_CR16","doi-asserted-by":"crossref","unstructured":"Vidas T, Tan J, Nahata J, Tan CL, Christin N, Tague P (2014) A5: Automated analysis of adversarial android applications. In: Proceedings of the 4th ACM Workshop on Security and Privacy in Smartphones & Mobile Devices, pp 39\u201350","DOI":"10.1145\/2666620.2666630"},{"key":"1248_CR17","doi-asserted-by":"crossref","unstructured":"Chakradeo S, Reaves B, Traynor P, Enck W (2013) Mast: Triage for market-scale mobile malware analysis. In: Proceedings of the sixth ACM conference on Security and privacy in wireless and mobile networks, pp 13\u201324","DOI":"10.1145\/2462096.2462100"},{"key":"1248_CR18","doi-asserted-by":"crossref","unstructured":"Lindorfer M, Neugschwandtner M, Platzer C (2015) Marvin: Efficient and comprehensive mobile app classification through static and dynamic analysis. In: IEEE 39th Annual Computer Software and Applications Conference (COMPSAC), pp 422\u2013433","DOI":"10.1109\/COMPSAC.2015.103"},{"key":"1248_CR19","doi-asserted-by":"publisher","first-page":"255","DOI":"10.1016\/j.cose.2014.11.001","volume":"49","author":"KO Elish","year":"2015","unstructured":"Elish KO, Shu X, Yao DD, Ryder BG, Jiang X (2015) Profiling user-trigger dependence for Android malware detection. Comput Secur 49:255\u2013273","journal-title":"Comput Secur"},{"key":"1248_CR20","doi-asserted-by":"publisher","first-page":"17","DOI":"10.1016\/j.diin.2015.06.002","volume":"14","author":"J-w Jang","year":"2015","unstructured":"Jang J-w, Kang H, Woo J, Mohaisen A, Kim HK (2015) Andro-autopsy: anti-malware system based on similarity matching of malware and malware creator-centric information. Digit Investig 14:17\u201335","journal-title":"Digit Investig"},{"key":"1248_CR21","doi-asserted-by":"crossref","unstructured":"Zhu H, Xiong H, Ge Y, Chen E (2014) Mobile app recommendations with security and privacy awareness. In: Proceedings of the 20th ACM SIGKDD international conference on Knowledge discovery and data mining, pp 951\u2013960","DOI":"10.1145\/2623330.2623705"},{"key":"1248_CR22","doi-asserted-by":"crossref","unstructured":"Mart\u00edn I, Hern\u00e1ndez JA, Mu\u00f1oz A, Guzm\u00e1n A (2018) Android malware characterization using metadata and machine learning techniques security and communication networks","DOI":"10.1155\/2018\/5749481"},{"key":"1248_CR23","unstructured":"Parkour M (2014) Contagiodump, ed"},{"key":"1248_CR24","unstructured":"Roberts J-M (2014) Virus share, ed"},{"key":"1248_CR25","unstructured":"Virus Total (2017) Available: \nhttps:\/\/www.virustotal.com\/#\/home\/upload"},{"key":"1248_CR26","unstructured":"Tumbleson C, Wisniewski R (2015) Apktool, ed"},{"key":"1248_CR27","doi-asserted-by":"crossref","unstructured":"Chia PH, Yamamoto Y, Asokan N (2012) Is this app safe?: a large scale study on application permissions and risk signals. In: Proceedings of the 21st international conference on World Wide Web, pp 311\u2013320","DOI":"10.1145\/2187836.2187879"},{"key":"1248_CR28","unstructured":"Android: Normal and Dangerous Permissions (2017) Available: \nhttps:\/\/developer.android.com\/guide\/topics\/permissions\/requesting.html#normal-dangerous"},{"key":"1248_CR29","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/3-540-45014-9_1","volume-title":"Ensemble methods in machine learning. In International workshop on multiple classifier systems","author":"TG Dietterich","year":"2000","unstructured":"Dietterich TG (2000) Ensemble methods in machine learning. In International workshop on multiple classifier systems. Springer, Berlin, pp 1\u201315"},{"key":"1248_CR30","doi-asserted-by":"publisher","first-page":"163","DOI":"10.1093\/biomet\/70.1.163","volume":"70","author":"JT Kent","year":"1983","unstructured":"Kent JT (1983) Information gain and a general measure of correlation. Biometrika 70:163\u2013173","journal-title":"Biometrika"},{"key":"1248_CR31","doi-asserted-by":"crossref","unstructured":"Peiravian N, Zhu X (2013) Machine Learning for Android Malware Detection Using Permission and API Calls. In: 2013 IEEE 25th International Conference on Tools with Artificial Intelligence, pp 300\u2013305","DOI":"10.1109\/ICTAI.2013.53"},{"key":"1248_CR32","doi-asserted-by":"publisher","first-page":"121","DOI":"10.1016\/j.cose.2016.11.007","volume":"65","author":"A Feizollah","year":"2017","unstructured":"Feizollah A, Anuar NB, Salleh R, Suarez-Tangil G, Furnell S (2017) Androdialysis: Analysis of android intent effectiveness in malware detection. Comput Secur 65:121\u2013134","journal-title":"Comput Secur"}],"container-title":["Mobile Networks and Applications"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11036-019-01248-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s11036-019-01248-0\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11036-019-01248-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,8,17]],"date-time":"2020-08-17T23:58:59Z","timestamp":1597708739000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s11036-019-01248-0"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,8,19]]},"references-count":32,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2020,2]]}},"alternative-id":["1248"],"URL":"https:\/\/doi.org\/10.1007\/s11036-019-01248-0","relation":{},"ISSN":["1383-469X","1572-8153"],"issn-type":[{"value":"1383-469X","type":"print"},{"value":"1572-8153","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019,8,19]]},"assertion":[{"value":"19 August 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}