{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,7]],"date-time":"2026-06-07T06:58:21Z","timestamp":1780815501569,"version":"3.54.1"},"reference-count":49,"publisher":"Elsevier BV","license":[{"start":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T00:00:00Z","timestamp":1780272000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/tdm\/userlicense\/1.0\/"},{"start":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T00:00:00Z","timestamp":1780272000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/legal\/tdmrep-license"},{"start":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T00:00:00Z","timestamp":1780272000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-017"},{"start":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T00:00:00Z","timestamp":1780272000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"},{"start":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T00:00:00Z","timestamp":1780272000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-012"},{"start":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T00:00:00Z","timestamp":1780272000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T00:00:00Z","timestamp":1780272000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-004"}],"funder":[{"DOI":"10.13039\/501100004608","name":"Jiangsu Province Natural Science Foundation","doi-asserted-by":"publisher","award":["BK20220515"],"award-info":[{"award-number":["BK20220515"]}],"id":[{"id":"10.13039\/501100004608","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100013088","name":"Qinglan Project of Jiangsu Province of China","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100013088","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100004543","name":"China Scholarship Council","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100004543","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["U1836116"],"award-info":[{"award-number":["U1836116"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62172194"],"award-info":[{"award-number":["62172194"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62202206"],"award-info":[{"award-number":["62202206"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100012154","name":"Graduate Research and Innovation Projects of Jiangsu Province","doi-asserted-by":"publisher","award":["KYCX24_3981"],"award-info":[{"award-number":["KYCX24_3981"]}],"id":[{"id":"10.13039\/501100012154","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["elsevier.com","sciencedirect.com"],"crossmark-restriction":true},"short-container-title":["Journal of Information Security and Applications"],"published-print":{"date-parts":[[2026,6]]},"DOI":"10.1016\/j.jisa.2026.104417","type":"journal-article","created":{"date-parts":[[2026,3,7]],"date-time":"2026-03-07T04:57:18Z","timestamp":1772859438000},"page":"104417","update-policy":"https:\/\/doi.org\/10.1016\/elsevier_cm_policy","source":"Crossref","is-referenced-by-count":1,"special_numbering":"C","title":["A novel android malware detection method based on CWInFs and MPTACF optimization"],"prefix":"10.1016","volume":"99","author":[{"ORCID":"https:\/\/orcid.org\/0009-0001-1066-4340","authenticated-orcid":false,"given":"Shengran","family":"Wang","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3124-5452","authenticated-orcid":false,"given":"Jinfu","family":"Chen","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0743-1156","authenticated-orcid":false,"given":"Saihua","family":"Cai","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2668-6592","authenticated-orcid":false,"given":"Jingyi","family":"Chen","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2540-3861","authenticated-orcid":false,"given":"Ernest","family":"Akpaku","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-5587-3454","authenticated-orcid":false,"given":"Xingquan","family":"Mao","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"78","reference":[{"key":"10.1016\/j.jisa.2026.104417_bib0001","unstructured":"StatCounter GlobalStats. Mobile operating system market share worldwide | may 2025. https:\/\/gs.statcounter.com\/os-market-share\/mobile\/worldwide; 2025. Accessed: 2025-07-16."},{"key":"10.1016\/j.jisa.2026.104417_bib0002","unstructured":"Wikipedia contributors. Android (operating system). https:\/\/en.wikipedia.org\/wiki\/Android_(operating_system); 2025. Accessed: 2025-07-16."},{"key":"10.1016\/j.jisa.2026.104417_bib0003","unstructured":"Mascellino A.. Expert warns of growing android malware activity. 2024. Accessed: 2025-07-16; https:\/\/www.infosecurity-magazine.com\/news\/expert-warns-growing-android\/."},{"issue":"2","key":"10.1016\/j.jisa.2026.104417_bib0004","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3313391","article-title":"Mamadroid: detecting android malware by building markov chains of behavioral models (extended version)","volume":"22","author":"Onwuzurike","year":"2019","journal-title":"ACM Trans Priv Secur"},{"key":"10.1016\/j.jisa.2026.104417_bib0005","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2024.104083","article-title":"Gcn-mhsa: a novel malicious traffic detection method based on graph convolutional neural network and multi-head self-attention mechanism","volume":"147","author":"Chen","year":"2024","journal-title":"Comput Secur"},{"key":"10.1016\/j.jisa.2026.104417_bib0006","doi-asserted-by":"crossref","DOI":"10.1016\/j.infsof.2024.107453","article-title":"Hybrid semantics-based vulnerability detection incorporating a temporal convolutional network and self-attention mechanism","volume":"171","author":"Chen","year":"2024","journal-title":"Inf Softw Technol"},{"issue":"3","key":"10.1016\/j.jisa.2026.104417_bib0007","doi-asserted-by":"crossref","first-page":"773","DOI":"10.1109\/TIFS.2018.2866319","article-title":"A multimodal deep learning method for android malware detection using various features","volume":"14","author":"Kim","year":"2018","journal-title":"IEEE Trans Inf Forensics Secur"},{"key":"10.1016\/j.jisa.2026.104417_bib0008","series-title":"Proceedings of the 2020\u202fACM SIGSAC conference on computer and communications security, CCS","first-page":"757","article-title":"Enhancing state-of-the-art classifiers with api semantics to detect evolved android malware","author":"Zhang","year":"2020"},{"key":"10.1016\/j.jisa.2026.104417_bib0009","series-title":"21St annual network and distributed system security symposium, NDSS","first-page":"23","article-title":"Drebin: effective and explainable detection of android malware in your pocket","volume":"vol. 14","author":"Arp","year":"2014"},{"key":"10.1016\/j.jisa.2026.104417_bib0010","series-title":"2015 International conference on cyber-enabled distributed computing and knowledge discovery","first-page":"84","article-title":"Android malware detection based on static analysis of characteristic tree","author":"Li","year":"2015"},{"key":"10.1016\/j.jisa.2026.104417_bib0011","doi-asserted-by":"crossref","first-page":"838","DOI":"10.1109\/TIFS.2020.3021924","article-title":"Can we trust your explanations? sanity checks for interpreters in android malware analysis","volume":"16","author":"Fan","year":"2020","journal-title":"IEEE Trans Inf Forensics Secur"},{"issue":"14","key":"10.1016\/j.jisa.2026.104417_bib0012","doi-asserted-by":"crossref","first-page":"7747","DOI":"10.3390\/app15147747","article-title":"Systematic review: malware detection and classification in cybersecurity","volume":"15","author":"Berrios","year":"2025","journal-title":"Appl Sci"},{"issue":"1","key":"10.1016\/j.jisa.2026.104417_bib0013","doi-asserted-by":"crossref","DOI":"10.1111\/exsy.13482","article-title":"A review of detecting malware in android devices based on machine learning techniques","volume":"41","author":"Sharma","year":"2024","journal-title":"Expert Syst"},{"key":"10.1016\/j.jisa.2026.104417_bib0014","unstructured":"Liu J., Zeng J., Pierazzi F., Cavallaro L., Liang Z.. Unraveling the key of machine learning solutions for android malware detection. arXiv preprint arXiv: 2402029532024;."},{"issue":"1","key":"10.1016\/j.jisa.2026.104417_bib0015","doi-asserted-by":"crossref","first-page":"16","DOI":"10.1186\/s42400-022-00119-8","article-title":"On building machine learning pipelines for android malware detection: a procedural survey of practices, challenges and opportunities","volume":"5","author":"Mehrabi Koushki","year":"2022","journal-title":"Cybersecurity"},{"key":"10.1016\/j.jisa.2026.104417_bib0016","series-title":"2019\u202fIEEE 10Th international conference on software engineering and service science (ICSESS)","first-page":"16","article-title":"Deepdroid: feature selection approach to detect android malware using deep learning","author":"Mahindru","year":"2019"},{"key":"10.1016\/j.jisa.2026.104417_bib0017","series-title":"A journey towards bio-inspired techniques in software engineering","first-page":"103","article-title":"Perbdroid: effective malware detection model developed using machine learning classification techniques","author":"Mahindru","year":"2020"},{"key":"10.1016\/j.jisa.2026.104417_bib0018","doi-asserted-by":"crossref","DOI":"10.1016\/j.infsof.2024.107560","article-title":"Dcm-gift: an android malware dynamic classification method based on gray-scale image and feature-selection tree","volume":"176","author":"Chen","year":"2024","journal-title":"Inf Softw Technol"},{"key":"10.1016\/j.jisa.2026.104417_bib0019","series-title":"2019 34th IEEE\/ACM international conference on automated software engineering, ASE","first-page":"139","article-title":"Malscan: fast market-wide mobile malware scanning by social-network centrality analysis","author":"Wu","year":"2019"},{"issue":"3","key":"10.1016\/j.jisa.2026.104417_bib0020","doi-asserted-by":"crossref","first-page":"2025","DOI":"10.1109\/TDSC.2022.3168285","article-title":"Msdroid: identifying malicious snippets for android malware detection","volume":"20","author":"He","year":"2022","journal-title":"IEEE Trans Dependable Secure Comput"},{"issue":"7","key":"10.1016\/j.jisa.2026.104417_bib0021","doi-asserted-by":"crossref","first-page":"2597","DOI":"10.3390\/s22072597","article-title":"Mfdroid: a stacking ensemble learning framework for android malware detection","volume":"22","author":"Wang","year":"2022","journal-title":"Sensors"},{"key":"10.1016\/j.jisa.2026.104417_bib0022","doi-asserted-by":"crossref","DOI":"10.1016\/j.eswa.2023.120952","article-title":"A multi-model ensemble learning framework for imbalanced android malware detection","volume":"234","author":"Zhu","year":"2023","journal-title":"Expert Syst Appl"},{"issue":"11","key":"10.1016\/j.jisa.2026.104417_bib0023","doi-asserted-by":"crossref","first-page":"4302","DOI":"10.3390\/s22114302","article-title":"A novel detection and multi-classification approach for iot-malware using random forest voting of fine-tuning convolutional neural networks","volume":"22","author":"Atitallah","year":"2022","journal-title":"Sensors"},{"key":"10.1016\/j.jisa.2026.104417_bib0024","doi-asserted-by":"crossref","DOI":"10.1016\/j.eswa.2023.121155","article-title":"Maldetect: a classifier fusion approach for detection of android malware","volume":"235","author":"Dhalaria","year":"2024","journal-title":"Expert Syst Appl"},{"issue":"2","key":"10.1016\/j.jisa.2026.104417_bib0025","doi-asserted-by":"crossref","first-page":"453","DOI":"10.1109\/TCYB.2017.2777960","article-title":"Droidfusion: a novel multilevel classifier fusion approach for android malware detection","volume":"49","author":"Yerima","year":"2018","journal-title":"IEEE Trans Cybern"},{"key":"10.1016\/j.jisa.2026.104417_bib0026","series-title":"31St USENIX security symposium (USENIX security 22)","first-page":"3971","article-title":"Dos and don\u2019ts of machine learning in computer security","author":"Arp","year":"2022"},{"key":"10.1016\/j.jisa.2026.104417_bib0027","doi-asserted-by":"crossref","DOI":"10.1016\/j.eswa.2019.112964","article-title":"Android-GAN: defending against android pattern attacks using multi-modal generative network as anomaly detector","volume":"141","author":"Shin","year":"2020","journal-title":"Expert Syst Appl"},{"key":"10.1016\/j.jisa.2026.104417_bib0028","series-title":"2021\u202fIEEE Conference on dependable and secure computing, DSC","first-page":"1","article-title":"Using generative adversarial networks for data augmentation in android malware detection","author":"Chen","year":"2021"},{"key":"10.1016\/j.jisa.2026.104417_bib0029","unstructured":"SISTO A.. Androcrawl: studying alternative android marketplaces2012;."},{"issue":"5","key":"10.1016\/j.jisa.2026.104417_bib0030","first-page":"271","article-title":"Defensedroid: a modern approach to android malware detection","volume":"8","author":"Colaco","year":"2021","journal-title":"Strad Res"},{"key":"10.1016\/j.jisa.2026.104417_bib0031","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2021.102399","article-title":"Kronodroid: time-based hybrid-featured dataset for effective android malware detection and characterization","volume":"110","author":"Guerra-Manzanares","year":"2021","journal-title":"Comput Secur"},{"key":"10.1016\/j.jisa.2026.104417_bib0032","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2020.102086","article-title":"Jowmdroid: android malware detection based on feature weighting with joint optimization of weight-mapping and classifier parameters","volume":"100","author":"Cai","year":"2021","journal-title":"Computers & Security"},{"issue":"5","key":"10.1016\/j.jisa.2026.104417_bib0033","doi-asserted-by":"crossref","first-page":"1369","DOI":"10.1007\/s13042-020-01238-9","article-title":"Semidroid: a behavioral malware detector based on unsupervised machine learning techniques using feature selection approaches","volume":"12","author":"Mahindru","year":"2021","journal-title":"Int J Mach Learn Cybern"},{"issue":"7","key":"10.1016\/j.jisa.2026.104417_bib0034","doi-asserted-by":"crossref","first-page":"4903","DOI":"10.1007\/s00521-021-05875-1","article-title":"A novel permission-based android malware detection system using feature selection based on linear regression","volume":"35","author":"Sahin","year":"2023","journal-title":"Neural Comput Appl"},{"key":"10.1016\/j.jisa.2026.104417_bib0035","series-title":"The 32nd international conference on software engineering and knowledge engineering, SEKE","first-page":"566","article-title":"Significant API calls in android malware detection (using feature selection techniques and correlation based feature elimination)","author":"Galib","year":"2020"},{"key":"10.1016\/j.jisa.2026.104417_bib0036","series-title":"2016 11Th international conference on malicious and unwanted software (MALWARE)","first-page":"1","article-title":"SigPID: significant permission identification for android malware detection","author":"Sun","year":"2016"},{"issue":"10","key":"10.1016\/j.jisa.2026.104417_bib0037","doi-asserted-by":"crossref","first-page":"9464","DOI":"10.1016\/j.jksuci.2021.11.004","article-title":"A multi-tiered feature selection model for android malware detection based on feature discrimination and information gain","volume":"34","author":"Bhat","year":"2022","journal-title":"J King Saud Univ Comput Inf Sci"},{"key":"10.1016\/j.jisa.2026.104417_bib0038","series-title":"Adjunct proceedings of the 2020\u202fACM international joint conference on pervasive and ubiquitous computing and proceedings of the 2020\u202fACM international symposium on wearable computers","first-page":"568","article-title":"Malware detection using artificial bee colony algorithm","author":"Mohammadi","year":"2020"},{"key":"10.1016\/j.jisa.2026.104417_bib0039","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2023.103126","article-title":"DroidRL: feature selection for android malware detection with reinforcement learning","volume":"128","author":"Wu","year":"2023","journal-title":"Comput Secur"},{"issue":"4","key":"10.1016\/j.jisa.2026.104417_bib0040","doi-asserted-by":"crossref","first-page":"10525","DOI":"10.1007\/s11042-023-16035-z","article-title":"A new approach to android malware detection using fuzzy logic-based simulated annealing and feature selection","volume":"83","author":"Seyfari","year":"2024","journal-title":"Multimed Tools Appl"},{"issue":"1","key":"10.1016\/j.jisa.2026.104417_bib0041","doi-asserted-by":"crossref","DOI":"10.1038\/s41598-024-60982-y","article-title":"Permdroid a framework developed using proposed feature selection approach and machine learning techniques for android malware detection","volume":"14","author":"Mahindru","year":"2024","journal-title":"Sci Rep"},{"issue":"2","key":"10.1016\/j.jisa.2026.104417_bib0042","doi-asserted-by":"crossref","first-page":"712","DOI":"10.1016\/j.jer.2024.04.008","article-title":"Machine learning approach to detect android malware using feature-selection based on feature importance score","volume":"13","author":"Pathak","year":"2025","journal-title":"Journal of Engineering Research"},{"issue":"2","key":"10.1016\/j.jisa.2026.104417_bib0043","doi-asserted-by":"crossref","first-page":"984","DOI":"10.1109\/TNSE.2020.2996379","article-title":"Sedmdroid: an enhanced stacking ensemble framework for android malware detection","volume":"8","author":"Zhu","year":"2020","journal-title":"IEEE Trans Network Sci Eng"},{"issue":"3","key":"10.1016\/j.jisa.2026.104417_bib0044","doi-asserted-by":"crossref","first-page":"1484","DOI":"10.3390\/app13031484","article-title":"An ensemble approach based on fuzzy logic using machine learning classifiers for android malware detection","volume":"13","author":"Atacak","year":"2023","journal-title":"Applied Sciences"},{"issue":"12","key":"10.1016\/j.jisa.2026.104417_bib0045","doi-asserted-by":"crossref","first-page":"10923","DOI":"10.1007\/s11042-024-19390-7","article-title":"Votedroid: a new ensemble voting classifier for malware detection based on fine-tuned deep learning models","volume":"84","author":"Bak\u0131r","year":"2025","journal-title":"Multimed Tools Appl"},{"issue":"1","key":"10.1016\/j.jisa.2026.104417_bib0046","doi-asserted-by":"crossref","first-page":"163","DOI":"10.23919\/JSEE.2024.000018","article-title":"Dcel: classifier fusion model for android malware detection","volume":"35","author":"Xu","year":"2024","journal-title":"J Syst Eng Electron"},{"issue":"12","key":"10.1016\/j.jisa.2026.104417_bib0047","doi-asserted-by":"crossref","first-page":"4396","DOI":"10.1109\/TPAMI.2020.3002843","article-title":"Infinite feature selection: a graph-based feature filtering approach","volume":"43","author":"Roffo","year":"2020","journal-title":"IEEE Trans Pattern Anal Mach Intell"},{"key":"10.1016\/j.jisa.2026.104417_bib0048","article-title":"Enhancing android malware detection via knowledge distillation on homogenized function call graphs","author":"Wang","year":"2025","journal-title":"Knowl Based Syst"},{"key":"10.1016\/j.jisa.2026.104417_bib0049","doi-asserted-by":"crossref","DOI":"10.1016\/j.eswa.2024.124633","article-title":"A lightweight deep learning-based android malware detection framework","volume":"255","author":"Ma","year":"2024","journal-title":"Expert Syst Appl"}],"container-title":["Journal of Information Security and Applications"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S2214212626000475?httpAccept=text\/xml","content-type":"text\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S2214212626000475?httpAccept=text\/plain","content-type":"text\/plain","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2026,5,15]],"date-time":"2026-05-15T15:45:21Z","timestamp":1778859921000},"score":1,"resource":{"primary":{"URL":"https:\/\/linkinghub.elsevier.com\/retrieve\/pii\/S2214212626000475"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,6]]},"references-count":49,"alternative-id":["S2214212626000475"],"URL":"https:\/\/doi.org\/10.1016\/j.jisa.2026.104417","relation":{},"ISSN":["2214-2126"],"issn-type":[{"value":"2214-2126","type":"print"}],"subject":[],"published":{"date-parts":[[2026,6]]},"assertion":[{"value":"Elsevier","name":"publisher","label":"This article is maintained by"},{"value":"A novel android malware detection method based on CWInFs and MPTACF optimization","name":"articletitle","label":"Article Title"},{"value":"Journal of Information Security and Applications","name":"journaltitle","label":"Journal Title"},{"value":"https:\/\/doi.org\/10.1016\/j.jisa.2026.104417","name":"articlelink","label":"CrossRef DOI link to publisher maintained version"},{"value":"article","name":"content_type","label":"Content Type"},{"value":"\u00a9 2026 Elsevier Ltd. All rights are reserved, including those for text and data mining, AI training, and similar technologies.","name":"copyright","label":"Copyright"}],"article-number":"104417"}}