Advanced Test Methodologies for Evaluation of Android Mobile Antivirus

Advanced Test Methodologies for Evaluation of Android Mobile Antivirus | Research Square window.SnipcartSettings = { analytics: { enabled: false } }; (function() { var accessVector = localStorage.getItem('access_vector') || ''; window.dataLayer = window.dataLayer || []; if (accessVector) { window.dataLayer.push({ user: { profile: { profileInfo: { snid: accessVector } } } }); } })(); (function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start':new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0],j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src='https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f);})(window,document,'script','dataLayer','GTM-K279D39R'); Browse Preprints In Review Journals COVID-19 Preprints AJE Video Bytes Research Tools Research Promotion AJE Professional Editing AJE Rubriq About Preprint Platform In Review Editorial Policies Our Team Advisory Board Help Center Sign In Submit a Preprint Cite Share Download PDF Research Article Advanced Test Methodologies for Evaluation of Android Mobile Antivirus Youngrak Ryu, Kangsik Shin, Jeongho Lee, Dong-Jae Jung, Ho-Mook Cho This is a preprint; it has not been peer reviewed by a journal. https://doi.org/ 10.21203/rs.3.rs-4677714/v1 This work is licensed under a CC BY 4.0 License Status: Posted Version 1 posted You are reading this latest preprint version Abstract The increasing reliance on mobile devices for sensitive activities has amplified the need for effective mobile antivirus solutions, particularly for the Android operating system, which is more susceptible to security threats due to its open source framework. This study aims to fill the gap in standardized evaluation criteria for mobile antivirus by developing comprehensive evaluation criteria and creating an experimental environment to assess various commercial antivirus products available on the Google Play Store. Key evaluation criteria included detection performance, resource optimization, update frequency, user-friendliness, and device compatibility. Results indicated that most antivirus products exhibited high detection rates, especially against financial malware, although there was notable variability in response times and update cycles, with two products significantly underperforming in both detection efficiency and speed. The study underscores the necessity for enhanced detection rules to reduce false positives and better handle potentially unwanted applications. This research provides a critical foundation for users to make informed decisions regarding antivirus products and for developers to improve the effectiveness of mobile antivirus solutions. Future work will focus on refining detection methodologies and expanding evaluation protocols to adapt to the rapidly evolving landscape of cyber threats, ensuring robust protection for mobile device users. Android OS Mobile antivirus evaluation Malware detection methodologies Static and dynamic analysis Detection accuracy Cybersecurity threats Financial malware detection Antivirus evaluation criteria Full Text Additional Declarations No competing interests reported. Cite Share Download PDF Status: Posted Version 1 posted You are reading this latest preprint version Research Square lets you share your work early, gain feedback from the community, and start making changes to your manuscript prior to peer review in a journal. As a division of Research Square Company, we’re committed to making research communication faster, fairer, and more useful. We do this by developing innovative software and high quality services for the global research community. Our growing team is made up of researchers and industry professionals working together to solve the most critical problems facing scientific publishing. Also discoverable on Platform About Our Team In Review Editorial Policies Advisory Board Help Center Resources Author Services Accessibility API Access RSS feed Manage Cookie Preferences © Research Square 2026 | ISSN 2693-5015 (online) Privacy Policy Terms of Service Do Not Sell My Personal Information {"props":{"pageProps":{"initialData":{"identity":"rs-4677714","acceptedTermsAndConditions":true,"allowDirectSubmit":true,"archivedVersions":[],"articleType":"Research Article","associatedPublications":[],"authors":[{"id":335601095,"identity":"dbc9340b-9f8f-45c8-baee-ac882ee51359","order_by":0,"name":"Youngrak Ryu","email":"","orcid":"","institution":"Korea Advanced Institute of Science and Technology","correspondingAuthor":false,"prefix":"","firstName":"Youngrak","middleName":"","lastName":"Ryu","suffix":""},{"id":335601096,"identity":"82aa2556-4693-4446-827b-21e6ff793c72","order_by":1,"name":"Kangsik Shin","email":"","orcid":"","institution":"Korea Advanced Institute of Science and Technology","correspondingAuthor":false,"prefix":"","firstName":"Kangsik","middleName":"","lastName":"Shin","suffix":""},{"id":335601097,"identity":"9c46438a-7cfd-40c4-9db5-f20fbeb2af89","order_by":2,"name":"Jeongho Lee","email":"","orcid":"","institution":"Korea Advanced Institute of Science and Technology","correspondingAuthor":false,"prefix":"","firstName":"Jeongho","middleName":"","lastName":"Lee","suffix":""},{"id":335601099,"identity":"f871849d-68c8-46c2-8dd8-397c7b4bc187","order_by":3,"name":"Dong-Jae Jung","email":"","orcid":"","institution":"Korea Advanced Institute of Science and Technology","correspondingAuthor":false,"prefix":"","firstName":"Dong-Jae","middleName":"","lastName":"Jung","suffix":""},{"id":335601100,"identity":"d6c22219-1fe2-4b54-9d33-856780655a80","order_by":4,"name":"Ho-Mook Cho","email":"data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAZAAAAAyAQMAAABI0h/eAAAABlBMVEX///8AAABVwtN+AAAACXBIWXMAAA7EAAAOxAGVKw4bAAAA4ElEQVRIie3PMQrCMBSA4SeFuESyRsSKN4h0VbxKi6BTwSMIgg4WXANeolLoHAk4RVw7OOgN4lYnbdFNCe3mkH9IQuAjLwA22z9Gy0U8XYKL7X2FKhHHa0cl8WuQIFbloQohu01w1QoFiZK3wyOHHlmgqTY+cjklA55hLz2tmMQ+DLhAkpsIo2HawZp20zMwWQzWiKG5NA72IayRbJv6kPswrkgyvx+3IiaKwYIYkDQSmoXFX5TwqFJziad0wiWaGAnh4f6qj8Il0Sy558PhaLteeUby9SqAUwvYbDab7VcvwglMQFa6M7cAAAAASUVORK5CYII=","orcid":"","institution":"Korea Advanced Institute of Science and Technology","correspondingAuthor":true,"prefix":"","firstName":"Ho-Mook","middleName":"","lastName":"Cho","suffix":""}],"badges":[],"createdAt":"2024-07-03 05:21:02","currentVersionCode":1,"declarations":"","doi":"10.21203/rs.3.rs-4677714/v1","doiUrl":"https://doi.org/10.21203/rs.3.rs-4677714/v1","draftVersion":[],"editorialEvents":[],"editorialNote":"","failedWorkflow":false,"files":[{"id":83393758,"identity":"2a51de0f-b111-4217-a403-e44e373fb0ff","added_by":"auto","created_at":"2025-05-24 20:01:16","extension":"pdf","order_by":1,"title":"","display":"","copyAsset":false,"role":"manuscript-pdf","size":4082855,"visible":true,"origin":"","legend":"","description":"","filename":"mobileavjournal.pdf","url":"https://assets-eu.researchsquare.com/files/rs-4677714/v1_covered_a17967e4-d159-4878-82c9-e2c034db6958.pdf"}],"financialInterests":"No competing interests reported.","formattedTitle":"Advanced Test Methodologies for Evaluation of Android Mobile Antivirus","fulltext":[],"fulltextSource":"","fullText":"","funders":[],"hasAdminPriorityOnWorkflow":false,"hasManuscriptDocX":false,"hasOptedInToPreprint":true,"hasPassedJournalQc":"","hasAnyPriority":false,"hideJournal":true,"highlight":"","institution":"","isAcceptedByJournal":false,"isAuthorSuppliedPdf":true,"isDeskRejected":"","isHiddenFromSearch":false,"isInQc":false,"isInWorkflow":false,"isPdf":true,"isPdfUpToDate":true,"isWithdrawnOrRetracted":false,"journal":{"display":true,"email":"[email protected]","identity":"researchsquare","isNatureJournal":false,"hasQc":true,"allowDirectSubmit":true,"externalIdentity":"","sideBox":"","snPcode":"","submissionUrl":"/submission","title":"Research Square","twitterHandle":"researchsquare","acdcEnabled":true,"dfaEnabled":false,"editorialSystem":"","reportingPortfolio":"","inReviewEnabled":false,"inReviewRevisionsEnabled":true},"keywords":"Android OS, Mobile antivirus evaluation, Malware detection methodologies, Static and dynamic analysis, Detection accuracy, Cybersecurity threats, Financial malware detection, Antivirus evaluation criteria","lastPublishedDoi":"10.21203/rs.3.rs-4677714/v1","lastPublishedDoiUrl":"https://doi.org/10.21203/rs.3.rs-4677714/v1","license":{"name":"CC BY 4.0","url":"https://creativecommons.org/licenses/by/4.0/"},"manuscriptAbstract":"The increasing reliance on mobile devices for sensitive activities has amplified the need for effective mobile antivirus solutions, particularly for the Android operating system, which is more susceptible to security threats due to its open source framework. This study aims to fill the gap in standardized evaluation criteria for mobile antivirus by developing comprehensive evaluation criteria and creating an experimental environment to assess various commercial antivirus products available on the Google Play Store. Key evaluation criteria included detection performance, resource optimization, update frequency, user-friendliness, and device compatibility. Results indicated that most antivirus products exhibited high detection rates, especially against financial malware, although there was notable variability in response times and update cycles, with two products significantly underperforming in both detection efficiency and speed. The study underscores the necessity for enhanced detection rules to reduce false positives and better handle potentially unwanted applications. This research provides a critical foundation for users to make informed decisions regarding antivirus products and for developers to improve the effectiveness of mobile antivirus solutions. Future work will focus on refining detection methodologies and expanding evaluation protocols to adapt to the rapidly evolving landscape of cyber threats, ensuring robust protection for mobile device users.","manuscriptTitle":"Advanced Test Methodologies for Evaluation of Android Mobile Antivirus","msid":"","msnumber":"","nonDraftVersions":[{"code":1,"date":"2024-08-06 18:29:05","doi":"10.21203/rs.3.rs-4677714/v1","editorialEvents":[{"type":"communityComments","content":0}],"status":"published","journal":{"display":true,"email":"[email protected]","identity":"researchsquare","isNatureJournal":false,"hasQc":true,"allowDirectSubmit":true,"externalIdentity":"","sideBox":"","snPcode":"","submissionUrl":"/submission","title":"Research Square","twitterHandle":"researchsquare","acdcEnabled":true,"dfaEnabled":false,"editorialSystem":"","reportingPortfolio":"","inReviewEnabled":false,"inReviewRevisionsEnabled":true}}],"origin":"","ownerIdentity":"9a6be088-9adb-425c-ad0c-1ee35fbed559","owner":[],"postedDate":"August 6th, 2024","published":true,"recentEditorialEvents":[],"rejectedJournal":[],"revision":"","amendment":"","status":"posted","subjectAreas":[],"tags":[],"updatedAt":"2025-05-24T19:53:09+00:00","versionOfRecord":[],"versionCreatedAt":"2024-08-06 18:29:05","video":"","vorDoi":"","vorDoiUrl":"","workflowStages":[]},"version":"v1","identity":"rs-4677714","journalConfig":"researchsquare"},"__N_SSP":true},"page":"/article/[identity]/[[...version]]","query":{"redirect":"/article/rs-4677714","identity":"rs-4677714","version":["v1"]},"buildId":"qtupq5eGEP_6zYnWcrvyt","isFallback":false,"isExperimentalCompile":false,"dynamicIds":[84888],"gssp":true,"scriptLoader":[]}