False Sense of Security: A Study on the Effectivity of Jailbreak Detection in Banking Apps

Kellner, Ansgar; Micha, Horlboge,; Rieck, Konrad; Wressnegger, Christian

doi:10.1109/eurosp.2019.00011

Cited by 12 publications

(10 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To the best of our knowledge, no work targeting the autonomous evaluation of risk indicators exists yet. In this section, we will, therefore, discuss existing work for the individual parts of FedCRI, covering the detection of risks on smartphones [29], [53], [23], [32], [44], [26], [56], coordination of different clients for threat intelligence [28], [9], [17], [13] and leveraging ML for detecting risks and anomalies [49], [42].…”

Section: Related Workmentioning

confidence: 99%

“…Jailbreak Detection: Several strategies to detect rooted or jailbroken devices have been developed [29], [53]. They focus on hard-coded heuristic checks, e.g., to determine whether certain parts of the file system [29] are writable (such as "/system" [53]), or, whether certain program files are indicative of privilege escalation (e.g., the su application on android [53]), and typical applications on jailbroken devices (like alternative app stores on iOS devices [29]), are present on the device. In contrast to these, FedCRI performs holistic risk evaluation based on several different risk factors simultaneously for more accurate detection results.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

FedCRI: Federated Mobile Cyber-Risk Intelligence

Fereidooni¹,

Dmitrienko²,

Rieger³

et al. 2022

Proceedings 2022 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

In the present era of ubiquitous digitization more and more services are becoming available online which is amplified by the Corona pandemic. The fast-growing mobile service market opens up new attack surfaces to the mobile service ecosystem. Hence, mobile service providers are faced with various challenges to protect their services and in particular the associated mobile apps. Defenses for apps are, however, often limited to (lightweight) application-level protection such as app hardening and monitoring and intrusion detection. Therefore, effective risk management is crucial to limit the exposure of mobile services to threats and potential damages caused by attacks.In this paper, we present FedCRI, a solution for sharing Cyber-Risk Intelligence (CRI). At its core, FedCRI transforms mobile cyber-risks into machine learning (ML) models and leverages ML-based risk management to evaluate security risks on mobile devices. FedCRI enables fast and autonomous sharing of actionable ML-based CRI knowledge by utilizing Federated Learning (FL). FL allows collaborative training of effective risk detection models based on information contributed by different mobile service providers while preserving the privacy of the training data of the individual organizations. We extensively evaluate our approach on several real-world user databases representing 23.8 million users of security-critical mobile apps (since Android 4 and iOS 6) provided by nine different service providers in different European countries. The datasets were collected over the course of six years in the domains of financial services, payments, and insurances. Our approach can successfully extract accurate CRI models, allowing effective identification of cybersecurity risks on mobile devices. Our evaluation shows that the federated risk detection model can achieve better than 99% accuracy in terms of F1-score in most risk classification tasks with a very low number of false positives.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

FedCRI: Federated Mobile Cyber-Risk Intelligence

Fereidooni¹,

Dmitrienko²,

Rieger³

et al. 2022

Proceedings 2022 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

show abstract

“…(1) Security mechanisms should be utilized to secure the servers and API to prevent any form of unauthorized access (2) Since the data in mobiles are highly confidential, encryption procedures should be timely applied [34,35]. (3) Protecting the source code must be prioritized at all levels of analysis and compilers to secure and enhance the confidentiality of the intellectual property (4) A two-factor authentication system should be applied to protect users' sensitive data [36,37]…”

Section: Security Countermeasuresmentioning

confidence: 99%

Survey on Reverse-Engineering Tools for Android Mobile Devices

Albakri

Fatima

Mohammed

et al. 2022

Mathematical Problems in Engineering

View full text Add to dashboard Cite

With the presence of the Internet and the frequent use of mobile devices to send several transactions that involve personal and sensitive information, it becomes of great importance to consider the security aspects of mobile devices. And with the increasing use of mobile applications that are utilized for several purposes such as healthcare or banking, those applications have become an easy and attractive target for attackers who want to get access to mobile devices and obtain users’ sensitive information. Developing a secure application is very important; otherwise, attackers can easily exploit vulnerabilities in mobile applications which lead to serious security issues such as information leakage or injecting applications with malicious programs to access user data. In this paper, we survey the literature on application security on mobile devices, specifically mobile devices running on the Android platform, and exhibit security threats in the Android system. In addition, we study many reverse-engineering tools that are utilized to exploit vulnerabilities in applications. We demonstrate several reverse-engineering tools in terms of methodology, security holes that can be exploited, and how to use these tools to help in developing more secure applications.

show abstract

“…security to obstruct unauthorized alternation of the operating system. A jailbreak is an advanced attack that dispels the prevention of the iOS software to entrance a device and the file system [82]. On the other hand, for the Android operating system, it is known as rooting the device [82].…”

Section: Operating System Securitymentioning

confidence: 99%

“…A jailbreak is an advanced attack that dispels the prevention of the iOS software to entrance a device and the file system [82]. On the other hand, for the Android operating system, it is known as rooting the device [82]. In the case of banking and Fintech apps, it's significant to make sure Android root prohibition and iOS jailbreak preclusion.…”

Section: Operating System Securitymentioning

confidence: 99%

Towards the Advancement of Cashless Transaction: A Security Analysis of Electronic Payment Systems

Moon¹,

Shamsuzzaman²,

Mridha³

et al. 2022

JCC

View full text Add to dashboard Cite

In recent decades, day-to-day lifestyle requires online payments as easy and simple solutions to several financial transactions, which makes the concept of Electronic payment Systems very popular in the growth of a cashless society. In fact, cashless transactions through simple mobile apps are not merely a concept anymore rather are implemented robustly and being used extensively. On the dark side, obvious financial benefits are making these apps vulnerable to being attacked, which can be successful through security breaches. These cybersecurity issues need to be traced out and resolved to make the financial transactions through an app secure and trustworthy. In this paper, several related papers are analyzed to trace out possible cybersecurity issues in the domain of Electronic Transaction System. The objective is to establish sufficient theoretical background to propose methodologies for measuring security issues and also identify the security strength of any FinTech application and provide standard security metrics.

show abstract

False Sense of Security: A Study on the Effectivity of Jailbreak Detection in Banking Apps

Cited by 12 publications

References 33 publications

FedCRI: Federated Mobile Cyber-Risk Intelligence

FedCRI: Federated Mobile Cyber-Risk Intelligence

Survey on Reverse-Engineering Tools for Android Mobile Devices

Towards the Advancement of Cashless Transaction: A Security Analysis of Electronic Payment Systems

Contact Info

Product

Resources

About