2023
DOI: 10.1145/3574158
|View full text |Cite
|
Sign up to set email alerts
|

Demystifying Hidden Sensitive Operations in Android Apps

Abstract: Security of Android devices is now paramount, given their wide adoption among consumers. As researchers develop tools for statically or dynamically detecting suspicious apps, malware writers regularly update their attack mechanisms to hide malicious behavior implementation. This poses two problems to current research techniques: static analysis approaches, given their over-approximations, can report an overwhelming number of false alarms, while dynamic approaches will miss those behaviors that are hidden throu… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1

Citation Types

0
2
0

Year Published

2023
2023
2025
2025

Publication Types

Select...
3
1
1

Relationship

0
5

Authors

Journals

citations
Cited by 5 publications
(2 citation statements)
references
References 66 publications
0
2
0
Order By: Relevance
“…Although the flashlight app's behavior aligns with the DISCOVER technique, it does not necessarily mean the app is malicious. The DISCOVER method [38] is a malware attack in which malicious code is installed on a device via a genuine app. The attack operates by gaining access to the device's operating system by exploiting a vulnerability in the legal app.…”
Section: Presence Of Suspicious Methodsmentioning
confidence: 99%
See 1 more Smart Citation
“…Although the flashlight app's behavior aligns with the DISCOVER technique, it does not necessarily mean the app is malicious. The DISCOVER method [38] is a malware attack in which malicious code is installed on a device via a genuine app. The attack operates by gaining access to the device's operating system by exploiting a vulnerability in the legal app.…”
Section: Presence Of Suspicious Methodsmentioning
confidence: 99%
“…Dynamic validation is an alternative but must avoid concealed critical flows due to evasion tactics. Sun et al [38] presented HiSenDroid, a static technique for detecting hidden sensitive operations (HSOs) in Android apps. HSOs are operations that have the potential to leak or acquire sensitive data.…”
Section: Fig 2: Android Security Issuesmentioning
confidence: 99%