MoBShield: a novel XML approach for securing mobile banking

Seraj, S, Sadiq, AS ORCID logoORCID: https://orcid.org/0000-0002-5746-0257, Kaiwartya, O ORCID logoORCID: https://orcid.org/0000-0001-9669-8244, Aljaidi, M, Konios, A ORCID logoORCID: https://orcid.org/0000-0001-5281-1911, Ali, M and Abazeed, M, 2024. MoBShield: a novel XML approach for securing mobile banking. Computers, Materials and Continua. ISSN 1546-2218 (Forthcoming)

[thumbnail of 1877076_Sadiq.pdf] Text
1877076_Sadiq.pdf - Post-print
Restricted to Repository staff only

Download (1MB)

Abstract

Mobile banking security has witnessed significant R&D attention from both financial institutions and academia. This is due to the growing number of mobile baking applications and their reachability and usefulness to society. However, these applications are also attractive prey for cybercriminals, who use a variety of malware to steal personal banking information. Related literature in mobile banking security requires many permissions that are not necessary for the application's intended security functionality. In this context, this paper presents a novel efficient permission identification approach for securing mobile banking (MoBShield) to detect and prevent malware. A permission-based dataset is generated for mobile banking malware detection that consists large number of malicious adware apps and benign apps to use as training datasets. The dataset is generated from 1650 malicious banking apps of the Canadian Institute of Cybersecurity, University of New Brunswick and benign apps from Google Play. A machine learning algorithm is used to determine whether a mobile banking application is malicious based on its permission requests. Further, an eXplainable machine learning (XML) approach is developed to improve trust by explaining the reasoning behind the algorithm’s behaviour. Performance evaluation tests that the approach can effectively and practically identify mobile banking malware with high precision and reduced false positives. Specifically, the adapted artificial neural networks (ANN), convolutional neural networks (CNN) and XML approaches achieve a higher accuracy of 99.7% and the adapted deep neural networks (DNN) approach achieves 99.6% accuracy in comparison with the state-of-the-art approaches. These promising results position the proposed approach as a potential tool for real-world scenarios, offering a robust means of identifying and thwarting malware in mobile-based banking applications. Consequently, MoBShield has the potential to significantly enhance the security and trustworthiness of mobile banking platforms, mitigating the risks posed by cyber threats and ensuring a safer user experience.

Item Type: Journal article
Publication Title: Computers, Materials and Continua
Creators: Seraj, S., Sadiq, A.S., Kaiwartya, O., Aljaidi, M., Konios, A., Ali, M. and Abazeed, M.
Publisher: Tech Science Press
Date: 20 March 2024
ISSN: 1546-2218
Identifiers:
Number
Type
1877076
Other
Divisions: Schools > School of Science and Technology
Record created by: Laura Ward
Date Added: 22 Mar 2024 16:22
Last Modified: 22 Mar 2024 16:22
URI: https://irep.ntu.ac.uk/id/eprint/51143

Actions (login required)

Edit View Edit View

Statistics

Views

Views per month over past year

Downloads

Downloads per month over past year