{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,1]],"date-time":"2026-05-01T17:55:31Z","timestamp":1777658131405,"version":"3.51.4"},"reference-count":28,"publisher":"Springer Science and Business Media LLC","issue":"5","license":[{"start":{"date-parts":[[2024,7,16]],"date-time":"2024-07-16T00:00:00Z","timestamp":1721088000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2024,7,16]],"date-time":"2024-07-16T00:00:00Z","timestamp":1721088000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"name":"Open University of Cyprus"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["World Wide Web"],"published-print":{"date-parts":[[2024,9]]},"abstract":"<jats:title>Abstract<\/jats:title><jats:p>Android malware has become an increasingly important threat to individuals, organizations, and society, posing significant risks to data security, privacy, and infrastructure. As malware evolves in sophistication and complexity, the detection and mitigation of these malicious software instances have become more challenging and time consuming since the required number of features to identify potential malware can be very high. To address this issue, we have developed an effective feature selection methodology for malware detection in Android. The critical concern in the field of malware detection is the complexity of algorithms and the use of features that are used to detect malware. The present paper delivers a methodology for pre-processing datasets to select the most optimal features that will allow detecting malware, while maintaining very high accuracy. The proposed methodology has been tested on two real world datasets and the results indicate that the number of features is significantly reduced from 489 to between 19 and 28 for the first dataset and from 9503 to between 9 and 27 for the second dataset, whilst the accuracy is maintained as if all features were used.<\/jats:p>","DOI":"10.1007\/s11280-024-01287-y","type":"journal-article","created":{"date-parts":[[2024,7,16]],"date-time":"2024-07-16T08:01:44Z","timestamp":1721116904000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":12,"title":["FSSDroid: Feature subset selection for Android malware detection"],"prefix":"10.1007","volume":"27","author":[{"given":"Nikolaos","family":"Polatidis","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Stelios","family":"Kapetanakis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Marcello","family":"Trovati","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ioannis","family":"Korkontzelos","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yannis","family":"Manolopoulos","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,7,16]]},"reference":[{"issue":"9","key":"1287_CR1","doi-asserted-by":"publisher","first-page":"2317","DOI":"10.1093\/comjnl\/bxac198","volume":"66","author":"G Ozogur","year":"2023","unstructured":"Ozogur, G., Erturk, M.A., Gurkas Aydin, Z., Aydin, M.A.: Android malware detection in bytecode level using TF-IDF and XGBoost. Comput. J. 66(9), 2317\u20132328 (2023). https:\/\/doi.org\/10.1093\/comjnl\/bxac198","journal-title":"Comput. J."},{"key":"1287_CR2","doi-asserted-by":"publisher","first-page":"73214","DOI":"10.1109\/access.2022.3189645","volume":"10","author":"MM Alani","year":"2022","unstructured":"Alani, M.M., Awad, A.I.: PAIRED: An explainable lightweight Android malware detection system. IEEE Access. 10, 73214\u201373228 (2022). https:\/\/doi.org\/10.1109\/access.2022.3189645","journal-title":"IEEE Access."},{"key":"1287_CR3","doi-asserted-by":"crossref","unstructured":"Arp, D., Spreitzenbarth, M., Hubner, M., Gascon, H., Rieck, K.: Drebin: Effective and explainable detection of Android malware in your pocket. In: Proceedings of the 21st Annual Network & Distributed System Security Symposium (NDSS), pp. 23\u201326 (2014). https:\/\/www.ndss-symposium.org\/ndss2014\/drebin-effective-and-explainable-detection-android-malware-your-pocket","DOI":"10.14722\/ndss.2014.23247"},{"issue":"11","key":"1287_CR4","doi-asserted-by":"publisher","first-page":"2721","DOI":"10.1093\/comjnl\/bxac114","volume":"66","author":"Y Li","year":"2023","unstructured":"Li, Y., Xiong, Z., Zhang, T., Zhang, Q., Fan, M., Xue, L.: Ensemble framework combining family information for Android malware detection. Comput. J. 66(11), 2721\u20132740 (2023). https:\/\/doi.org\/10.1093\/comjnl\/bxac114","journal-title":"Comput. J."},{"issue":"10","key":"1287_CR5","doi-asserted-by":"publisher","first-page":"2547","DOI":"10.1093\/comjnl\/bxab089","volume":"65","author":"RS Moorthy","year":"2022","unstructured":"Moorthy, R.S., Pabitha, P.: Accelerating analytics using improved binary particle swarm optimization for discrete feature selection. Comput. J. 65(10), 2547\u20132569 (2022). https:\/\/doi.org\/10.1093\/comjnl\/bxab089","journal-title":"Comput. J."},{"issue":"7","key":"1287_CR6","doi-asserted-by":"publisher","first-page":"1664","DOI":"10.1093\/comjnl\/bxac033","volume":"66","author":"W Zheng","year":"2023","unstructured":"Zheng, W., Jin, M.: Improving the performance of feature selection methods with low-sample-size data. Comput. J. 66(7), 1664\u20131686 (2023). https:\/\/doi.org\/10.1093\/comjnl\/bxac033","journal-title":"Comput. J."},{"key":"1287_CR7","doi-asserted-by":"publisher","unstructured":"Pehlivan, U., Baltaci, N., Acart\u00fcrk, C., Baykal, N.: The analysis of feature selection methods and classification algorithms in permission based Android malware detection. In: Proceedings of the IEEE Symposium on Computational Intelligence in Cyber Security (CICS), pp. 1\u20138 (2014). https:\/\/doi.org\/10.1109\/cicybs.2014.7013371","DOI":"10.1109\/cicybs.2014.7013371"},{"key":"1287_CR8","doi-asserted-by":"publisher","unstructured":"Fatima, A., Maurya, R., Dutta, M.K., Burget, R., Masek, J.: Android malware detection using genetic algorithm based optimized feature selection and machine learning. In: Proceedings of the 42nd International Conference on Telecommunications & Signal Processing (TSP), pp. 220\u2013223 (2019). https:\/\/doi.org\/10.1109\/tsp.2019.8769039","DOI":"10.1109\/tsp.2019.8769039"},{"issue":"2","key":"1287_CR9","doi-asserted-by":"publisher","first-page":"245","DOI":"10.1142\/s0218194019500116","volume":"29","author":"O Yildiz","year":"2019","unstructured":"Yildiz, O., Do\u011fru, I.A.: Permission-based Android malware detection system using feature selection with genetic algorithm. International Journal of Software Engineering & Knowledge Engineering. 29(2), 245\u2013262 (2019). https:\/\/doi.org\/10.1142\/s0218194019500116","journal-title":"International Journal of Software Engineering & Knowledge Engineering."},{"key":"1287_CR10","doi-asserted-by":"publisher","unstructured":"Mahindru, A., Sangal, A.L.: DeepDroid: Feature selection approach to detect Android malware using deep learning. In: Proceedings of the 10th IEEE International Conference on Software Engineering & Service Science (ICSESS), pp. 16\u201319 (2019). https:\/\/doi.org\/10.1109\/icsess47205.2019.9040821","DOI":"10.1109\/icsess47205.2019.9040821"},{"issue":"8","key":"1287_CR11","doi-asserted-by":"publisher","first-page":"13271","DOI":"10.1007\/s11042-020-10367-w","volume":"80","author":"A Mahindru","year":"2021","unstructured":"Mahindru, A., Sangal, A.L.: FSDroid: A feature selection technique to detect malware from Android using machine learning techniques. Multimedia Tools & Applications. 80(8), 13271\u201313323 (2021). https:\/\/doi.org\/10.1007\/s11042-020-10367-w","journal-title":"Multimedia Tools & Applications."},{"issue":"5","key":"1287_CR12","doi-asserted-by":"publisher","first-page":"1369","DOI":"10.1007\/s13042-020-01238-9","volume":"12","author":"A Mahindru","year":"2021","unstructured":"Mahindru, A., Sangal, A.L.: SemiDroid: A behavioral malware detector based on unsupervised machine learning techniques using feature selection approaches. International Journal of Machine Learning & Cybernetics. 12(5), 1369\u20131411 (2021). https:\/\/doi.org\/10.1007\/s13042-020-01238-9","journal-title":"International Journal of Machine Learning & Cybernetics."},{"key":"1287_CR13","doi-asserted-by":"publisher","unstructured":"Rahali, A., Lashkari, A.H., Kaur, G., Taheri, L., Gagnon, F., Massicotte, F.: Didroid: Android malware classification and characterization using deep image learning. In: Proceedings of the 10th International Conference on Communication & Network Security (ICCNS), pp. 70\u201382 (2020). https:\/\/doi.org\/10.1145\/3442520.3442522","DOI":"10.1145\/3442520.3442522"},{"issue":"5","key":"1287_CR14","doi-asserted-by":"publisher","first-page":"858","DOI":"10.3390\/sym12050858","volume":"12","author":"A Salah","year":"2020","unstructured":"Salah, A., Shalabi, E., Khedr, W.: A lightweight Android malware classifier using novel feature selection methods. Symmetry. 12(5), 858 (2020). https:\/\/doi.org\/10.3390\/sym12050858","journal-title":"Symmetry."},{"key":"1287_CR15","doi-asserted-by":"publisher","unstructured":"Sangal, A., Verma, H.K.: A static feature selection-based Android malware detection using machine learning techniques. In: Proceedings of the International Conference on Smart Electronics & Communication (ICOSEC), pp. 48\u201351 (2020). https:\/\/doi.org\/10.1109\/icosec49089.2020.9215355","DOI":"10.1109\/icosec49089.2020.9215355"},{"key":"1287_CR16","doi-asserted-by":"publisher","unstructured":"Keyes, D.S., Li, B., Kaur, G., Lashkari, A.H., Gagnon, F., Massicotte, F.: EntropLyzer: Android malware classification and characterization using entropy analysis of dynamic characteristics. In: Proceedings of the IEEE Reconciling Data Analytics, Automation, Privacy, & Security: A Big Data Challenge (RDAAPS), pp. 1\u201312 (2021). https:\/\/doi.org\/10.1109\/rdaaps48126.2021.9452002","DOI":"10.1109\/rdaaps48126.2021.9452002"},{"key":"1287_CR17","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2020.102086","volume":"100","author":"L Cai","year":"2021","unstructured":"Cai, L., Li, Y., Xiong, Z.: JOWMDroid: Android malware detection based on feature weighting with joint optimization of weight-mapping and classifier parameters. Computers & Security. 100, 102086 (2021). https:\/\/doi.org\/10.1016\/j.cose.2020.102086","journal-title":"Computers & Security."},{"key":"1287_CR18","doi-asserted-by":"publisher","DOI":"10.1016\/j.assoc.2020.107069","volume":"102","author":"N Zhang","year":"2021","unstructured":"Zhang, N., Tan, Y.A., Yang, C., Li, Y.: Deep learning feature exploration for Android malware detection. Appl. Soft Comput. 102, 107069 (2021). https:\/\/doi.org\/10.1016\/j.assoc.2020.107069","journal-title":"Appl. Soft Comput."},{"issue":"21","key":"1287_CR19","doi-asserted-by":"publisher","first-page":"2813","DOI":"10.3390\/math9212813","volume":"9","author":"J Lee","year":"2021","unstructured":"Lee, J., Jang, H., Ha, S., Yoon, Y.: Android malware detection using machine learning with feature selection based on the genetic algorithm. Mathematics. 9(21), 2813 (2021). https:\/\/doi.org\/10.3390\/math9212813","journal-title":"Mathematics."},{"issue":"4","key":"1287_CR20","doi-asserted-by":"publisher","first-page":"1374","DOI":"10.3390\/s21041374","volume":"21","author":"J Abawajy","year":"2021","unstructured":"Abawajy, J., Darem, A., Alhashmi, A.A.: Feature subset selection for malware detection in smart IoT platforms. Sensors. 21(4), 1374 (2021). https:\/\/doi.org\/10.3390\/s21041374","journal-title":"Sensors."},{"key":"1287_CR21","doi-asserted-by":"publisher","unstructured":"Smmarwar, S.K., Gupta, G.P., Kumar, S.: A hybrid feature selection approach-based Android malware detection framework using machine learning techniques. In: Proceedings of the International Conference on Cyber Security, Privacy & Networking (ICSPN), pp. 347\u2013356 (2022). https:\/\/doi.org\/10.1007\/978-981-16-8664-1_30","DOI":"10.1007\/978-981-16-8664-1_30"},{"key":"1287_CR22","doi-asserted-by":"publisher","unstructured":"Carrier, T., Victor, P., Tekeoglu, A., Lashkari, A.H.: Detecting obfuscated malware using memory feature engineering. In: Proceedings of the 8th International Conference on Information Systems Security & Privacy (ICISSP), pp. 177\u2013188 (2022).https:\/\/doi.org\/10.5220\/0010908200003120","DOI":"10.5220\/0010908200003120"},{"key":"1287_CR23","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103126","volume":"128","author":"Y Wu","year":"2023","unstructured":"Wu, Y., Li, M., Zeng, Q., Yang, T., Wang, J., Fang, Z., Cheng, L.: DroidRL: Feature selection for Android malware detection with reinforcement learning. Computers & Security. 128, 103126 (2023). https:\/\/doi.org\/10.1016\/j.cose.2023.103126","journal-title":"Computers & Security."},{"key":"1287_CR24","doi-asserted-by":"publisher","unstructured":"Sahin, D.\u00d6., Kural, O.E., Akleylek, S., Kili\u00e7, E.: A novel permission-based Android malware detection system using feature selection based on linear regression. Neural Computing & Applications, 1\u201316 (2023) https:\/\/doi.org\/10.1007\/S00521-021-05875-1","DOI":"10.1007\/S00521-021-05875-1"},{"issue":"1","key":"1287_CR25","doi-asserted-by":"publisher","first-page":"123","DOI":"10.3390\/sym15010123","volume":"15","author":"ES Alomari","year":"2023","unstructured":"Alomari, E.S., Nuiaa, R.R., Alyasseri, Z.A.A., Mohammed, H.J., Sani, N.S., Esa, M.I., Musawi, B.A.: Malware detection using deep learning and correlation-based feature selection. Symmetry. 15(1), 123 (2023). https:\/\/doi.org\/10.3390\/sym15010123","journal-title":"Symmetry."},{"issue":"6","key":"1287_CR26","doi-asserted-by":"publisher","first-page":"9517","DOI":"10.1007\/s11042-022-13767-2","volume":"82","author":"MR Keyvanpour","year":"2023","unstructured":"Keyvanpour, M.R., Barani Shirzad, M., Heydarian, F.: Android malware detection applying feature selection techniques and machine learning. Multimedia Tools & Applications. 82(6), 9517\u20139531 (2023). https:\/\/doi.org\/10.1007\/s11042-022-13767-2","journal-title":"Multimedia Tools & Applications."},{"issue":"5","key":"1287_CR27","doi-asserted-by":"publisher","first-page":"1078","DOI":"10.1109\/tcyb.2015.2423295","volume":"46","author":"A Sen","year":"2015","unstructured":"Sen, A., Islam, M.M., Murase, K., Yao, X.: Binarization with boosting and oversampling for multiclass classification. IEEE Transactions on Cybernetics. 46(5), 1078\u20131091 (2015). https:\/\/doi.org\/10.1109\/tcyb.2015.2423295","journal-title":"IEEE Transactions on Cybernetics."},{"key":"1287_CR28","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2021.102399","volume":"110","author":"A Guerra-Manzanares","year":"2021","unstructured":"Guerra-Manzanares, A., Bahsi, H., N\u00f5mm, S.: Kronodroid: Time-based hybrid-featured dataset for effective android malware detection and characterization. Computers & Security. 110, 102399 (2021). https:\/\/doi.org\/10.1016\/j.cose.2021.102399","journal-title":"Computers & Security."}],"container-title":["World Wide Web"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11280-024-01287-y.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s11280-024-01287-y\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11280-024-01287-y.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,9,20]],"date-time":"2024-09-20T14:12:50Z","timestamp":1726841570000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s11280-024-01287-y"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,7,16]]},"references-count":28,"journal-issue":{"issue":"5","published-print":{"date-parts":[[2024,9]]}},"alternative-id":["1287"],"URL":"https:\/\/doi.org\/10.1007\/s11280-024-01287-y","relation":{},"ISSN":["1386-145X","1573-1413"],"issn-type":[{"value":"1386-145X","type":"print"},{"value":"1573-1413","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,7,16]]},"assertion":[{"value":"6 April 2024","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"27 June 2024","order":2,"name":"revised","label":"Revised","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"2 July 2024","order":3,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"16 July 2024","order":4,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"Not applicable.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Ethical approval"}},{"value":"The authors declare no competing interests.","order":3,"name":"Ethics","group":{"name":"EthicsHeading","label":"Competing interests"}}],"article-number":"50"}}