AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks
<p dir="ltr">The widespread usage of Android-powered devices in the <u>Internet of Things</u> (IoT) makes them susceptible to evolving cybersecurity threats. Most healthcare devices in IoT networks, such as smart watches, smart thermometers, biosensors, and more, are powe...
محفوظ في:
| المؤلف الرئيسي: | |
|---|---|
| مؤلفون آخرون: | , , |
| منشور في: |
2024
|
| الموضوعات: | |
| الوسوم: |
إضافة وسم
لا توجد وسوم, كن أول من يضع وسما على هذه التسجيلة!
|
| _version_ | 1864513542692012032 |
|---|---|
| author | Faria Nawshin (21841598) |
| author2 | Devrim Unal (16864224) Mohammad Hammoudeh (7211567) Ponnuthurai N. Suganthan (17347024) |
| author2_role | author author author |
| author_facet | Faria Nawshin (21841598) Devrim Unal (16864224) Mohammad Hammoudeh (7211567) Ponnuthurai N. Suganthan (17347024) |
| author_role | author |
| dc.creator.none.fl_str_mv | Faria Nawshin (21841598) Devrim Unal (16864224) Mohammad Hammoudeh (7211567) Ponnuthurai N. Suganthan (17347024) |
| dc.date.none.fl_str_mv | 2024-05-07T06:00:00Z |
| dc.identifier.none.fl_str_mv | 10.1016/j.adhoc.2024.103523 |
| dc.relation.none.fl_str_mv | https://figshare.com/articles/journal_contribution/AI-powered_malware_detection_with_Differential_Privacy_for_zero_trust_security_in_Internet_of_Things_networks/29715209 |
| dc.rights.none.fl_str_mv | CC BY 4.0 info:eu-repo/semantics/openAccess |
| dc.subject.none.fl_str_mv | Information and computing sciences Artificial intelligence Cybersecurity and privacy Machine learning Privacy-preserving machine learning Zero trust Android malware detection Malware category classification Differential Privacy Privacy budget |
| dc.title.none.fl_str_mv | AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks |
| dc.type.none.fl_str_mv | Text Journal contribution info:eu-repo/semantics/publishedVersion text contribution to journal |
| description | <p dir="ltr">The widespread usage of Android-powered devices in the <u>Internet of Things</u> (IoT) makes them susceptible to evolving cybersecurity threats. Most healthcare devices in IoT networks, such as smart watches, smart thermometers, biosensors, and more, are powered by the<u> Android</u> operating system, where preserving the privacy of user-sensitive data is of <u>utmost importance</u>. Detecting <u>Android malware </u>is thus vital for protecting <u>sensitive</u> information and ensuring the reliability of IoT networks. This article focuses on AI-enabled <u>Android malware</u> detection for improving zero trust security in IoT networks, which requires <u>Android</u><u> applications </u>to be verified and authenticated before providing access to network resources. The zero trust security model requires strict <u>identity </u>verification for every entity trying to access resources on a private network, regardless of whether they are inside or outside the <u>network perimeter</u>. Our proposed solution, DP-RFECV-FNN, an innovative approach to Android <u>malware</u> detection that employs Differential Privacy (<u>DP</u>) within a Feedforward Neural Network (<u>FNN</u>) designed for IoT networks under the zero trust model. By integrating <u>DP</u>, we ensure the confidentiality of data during the detection process, setting a new standard for privacy in cybersecurity solutions. By combining the strengths of DP and zero trust security with the powerful learning capacity of the FNN, DP-RFECV-FNN demonstrates the ability to identify both known and novel malware types and achieves higher accuracy while maintaining strict privacy controls compared with recent papers. DP-RFECV-FNN achieves an accuracy ranging from 97.78% to 99.21% while utilizing static features and 93.49% to 94.36% for dynamic features of Android applications to detect whether it is malware or benign. These results are achieved under varying privacy budgets, ranging from ϵ = 0 . 1 to ϵ = 1 . 0 . Furthermore, our proposed feature selection pipeline enables us to outperform the state-of-the-art by significantly reducing the number of selected features and training time while improving accuracy. To the best of our knowledge, this is the first work to categorize Android malware based on both static and dynamic features through a privacy-preserving <u>neural network model.</u></p><h2>Other Information</h2><p dir="ltr">Published in: Ad Hoc Networks<br>License: <a href="http://creativecommons.org/licenses/by/4.0/" target="_blank">http://creativecommons.org/licenses/by/4.0/</a><br>See article on publisher's website: <a href="https://dx.doi.org/10.1016/j.adhoc.2024.103523" target="_blank">https://dx.doi.org/10.1016/j.adhoc.2024.103523</a></p> |
| eu_rights_str_mv | openAccess |
| id | Manara2_21d146c2f9fb8f7da276c3e5f9b71ae1 |
| identifier_str_mv | 10.1016/j.adhoc.2024.103523 |
| network_acronym_str | Manara2 |
| network_name_str | Manara2 |
| oai_identifier_str | oai:figshare.com:article/29715209 |
| publishDate | 2024 |
| repository.mail.fl_str_mv | |
| repository.name.fl_str_mv | |
| repository_id_str | |
| rights_invalid_str_mv | CC BY 4.0 |
| spelling | AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networksFaria Nawshin (21841598)Devrim Unal (16864224)Mohammad Hammoudeh (7211567)Ponnuthurai N. Suganthan (17347024)Information and computing sciencesArtificial intelligenceCybersecurity and privacyMachine learningPrivacy-preserving machine learningZero trustAndroid malware detectionMalware category classificationDifferential PrivacyPrivacy budget<p dir="ltr">The widespread usage of Android-powered devices in the <u>Internet of Things</u> (IoT) makes them susceptible to evolving cybersecurity threats. Most healthcare devices in IoT networks, such as smart watches, smart thermometers, biosensors, and more, are powered by the<u> Android</u> operating system, where preserving the privacy of user-sensitive data is of <u>utmost importance</u>. Detecting <u>Android malware </u>is thus vital for protecting <u>sensitive</u> information and ensuring the reliability of IoT networks. This article focuses on AI-enabled <u>Android malware</u> detection for improving zero trust security in IoT networks, which requires <u>Android</u><u> applications </u>to be verified and authenticated before providing access to network resources. The zero trust security model requires strict <u>identity </u>verification for every entity trying to access resources on a private network, regardless of whether they are inside or outside the <u>network perimeter</u>. Our proposed solution, DP-RFECV-FNN, an innovative approach to Android <u>malware</u> detection that employs Differential Privacy (<u>DP</u>) within a Feedforward Neural Network (<u>FNN</u>) designed for IoT networks under the zero trust model. By integrating <u>DP</u>, we ensure the confidentiality of data during the detection process, setting a new standard for privacy in cybersecurity solutions. By combining the strengths of DP and zero trust security with the powerful learning capacity of the FNN, DP-RFECV-FNN demonstrates the ability to identify both known and novel malware types and achieves higher accuracy while maintaining strict privacy controls compared with recent papers. DP-RFECV-FNN achieves an accuracy ranging from 97.78% to 99.21% while utilizing static features and 93.49% to 94.36% for dynamic features of Android applications to detect whether it is malware or benign. These results are achieved under varying privacy budgets, ranging from ϵ = 0 . 1 to ϵ = 1 . 0 . Furthermore, our proposed feature selection pipeline enables us to outperform the state-of-the-art by significantly reducing the number of selected features and training time while improving accuracy. To the best of our knowledge, this is the first work to categorize Android malware based on both static and dynamic features through a privacy-preserving <u>neural network model.</u></p><h2>Other Information</h2><p dir="ltr">Published in: Ad Hoc Networks<br>License: <a href="http://creativecommons.org/licenses/by/4.0/" target="_blank">http://creativecommons.org/licenses/by/4.0/</a><br>See article on publisher's website: <a href="https://dx.doi.org/10.1016/j.adhoc.2024.103523" target="_blank">https://dx.doi.org/10.1016/j.adhoc.2024.103523</a></p>2024-05-07T06:00:00ZTextJournal contributioninfo:eu-repo/semantics/publishedVersiontextcontribution to journal10.1016/j.adhoc.2024.103523https://figshare.com/articles/journal_contribution/AI-powered_malware_detection_with_Differential_Privacy_for_zero_trust_security_in_Internet_of_Things_networks/29715209CC BY 4.0info:eu-repo/semantics/openAccessoai:figshare.com:article/297152092024-05-07T06:00:00Z |
| spellingShingle | AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks Faria Nawshin (21841598) Information and computing sciences Artificial intelligence Cybersecurity and privacy Machine learning Privacy-preserving machine learning Zero trust Android malware detection Malware category classification Differential Privacy Privacy budget |
| status_str | publishedVersion |
| title | AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks |
| title_full | AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks |
| title_fullStr | AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks |
| title_full_unstemmed | AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks |
| title_short | AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks |
| title_sort | AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks |
| topic | Information and computing sciences Artificial intelligence Cybersecurity and privacy Machine learning Privacy-preserving machine learning Zero trust Android malware detection Malware category classification Differential Privacy Privacy budget |