@inproceedings{632a205e3c794e869af473122727ed99,
title = "Differences in Android Behavior between Real Device and Emulator: A Malware Detection Perspective",
abstract = "Behavioral data extracted from emulators or real devices, such as system calls, are utilized in research studies where machine learning models have been employed for mobile malware detection. However, these studies do not explore whether the selection of data source may have an impact on the performance of the models, assuming that both data sources generate similar outputs. We provide a comparative analysis of the data sets obtained from both sources by using statistical techniques, inducing learning models and demonstrating the impact of data source selection on detection models' performance. Our study shows that emulators generate more distinguishable data than real devices, meaning that designers of detection models should pay attention to the data sources utilized in the various steps of the machine learning workflow.",
keywords = "android malware, dynamic analysis, machine learning, mobile malware detection, system call",
author = "Alejandro Guerra-Manzanares and Hayretdin Bahsi and Sven Nomm",
note = "Publisher Copyright: {\textcopyright} 2019 IEEE.; 6th International Conference on Internet of Things: Systems, Management and Security, IOTSMS 2019 ; Conference date: 22-10-2019 Through 25-10-2019",
year = "2019",
month = oct,
doi = "10.1109/IOTSMS48152.2019.8939268",
language = "English",
series = "2019 6th International Conference on Internet of Things: Systems, Management and Security, IOTSMS 2019",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "399--404",
editor = "Mohammad Alsmirat and Yaser Jararweh",
booktitle = "2019 6th International Conference on Internet of Things",
address = "United States",
}