Semantically Rich Application-Centric Security in Android

Ongtang, Machigar; McLaughlin, S.W.; Enck, William; McDaniel, Patrick

doi:10.1109/acsac.2009.39

Cited by 283 publications

(201 citation statements)

References 8 publications

Supporting

Mentioning

199

Contrasting

Unclassified

Order By: Relevance

“…A behavior-based malware detection system (pBMDS) is proposed in [31] that use correlation between user's inputs and system calls in order to detect anomalous activities related to SMS/MMS sending. A new service named Kirin security service for Android is described in [33] and [34] that perform lightweight certification of applications to mitigate malware at install time. This service uses security rules, which matches undesirable properties in security configuration, bundled with applications.…”

Section: Malware Detection In Smartphonementioning

confidence: 99%

Android Mobile Platform Security and Malware Survey

.¹

2013

IJRET

View full text Add to dashboard Cite

show abstract

Section: Malware Detection In Smartphonementioning

confidence: 99%

Android Mobile Platform Security and Malware Survey

.¹

2013

IJRET

View full text Add to dashboard Cite

show abstract

“…Enck, Ongtang, Nauman and others [7][8][9] put forward an optimizing of an Android authorization mechanism. Wognsen et al [10] have conducted in-depth research and analysis on the Dalvik byte code.…”

Section: Related Workmentioning

confidence: 99%

An Android Malicious Code Detection Method Based on Improved DCA Algorithm

Wang

Gong

et al. 2017

Entropy

View full text Add to dashboard Cite

Abstract:Recently, Android malicious code has increased dramatically and the technology of reinforcement is increasingly powerful. Due to the development of code obfuscation and polymorphic deformation technology, the current Android malicious code static detection method whose feature selected is the semantic of application source code can not completely extract malware's code features. The Android malware static detection methods whose features used are only obtained from the AndroidManifest.xml file are easily affected by useless permissions. Therefore, there are some limitations in current Android malware static detection methods. The current Android malware dynamic detection algorithm is mostly required to customize the system or needs system root permissions. Based on the Dendritic Cell Algorithm (DCA), this paper proposes an Android malware algorithm that has a higher detection rate, does not need to modify the system, and reduces the impact of code obfuscation to a certain degree. This algorithm is applied to an Android malware detection method based on oriented Dalvik disassembly sequence and application interface (API) calling sequence. Through the designed experiments, the effectiveness of this method is verified for the detection of Android malware.

show abstract

“…Several work have been proposed to restrict the app's privilege. While Apex [45] allows users to selectively grant permissions to applications during the installation, Saint [46] goes further by governing runtime permission use as dictated by application provider policy. At the same time, several ideas have been proposed to defeat privilege-escalation attacks, including WoodPecker [40], PScount [26], DroidChecker [31], XMandDroid [28], Stowaway [38], and the work developed by Felt et al [39].…”

Section: Android System Securitymentioning

confidence: 99%

Attacks on Android Clipboard

Zhang

2014

Detection of Intrusions and Malware, and Vulnerability Assessment

View full text Add to dashboard Cite

Abstract. In this paper, we perform a thorough study on the risks imposed by the globally accessible Android Clipboard. Based on the risk assessment, we formulate a series of attacks and categorize them into two groups, i.e., manipulation and stealing. Clipboard data manipulation may lead to common code injection attacks, like JavaScript injection and command injection. Furthermore, it can also cause phishing attacks, including web phishing and app phishing. Data stealing happens when sensitive data copied into the clipboard is accessed by malicious applications. For each category of attack, we analyze a large number of candidate apps and show multiple case studies to demonstrate its feasibility. Also, our app analysis process is formulated to benefit future app development and vulnerability detection. After a comprehensive exposure of the risk, we briefly discuss some potential solutions.

show abstract

Semantically Rich Application-Centric Security in Android

Cited by 283 publications

References 8 publications

Android Mobile Platform Security and Malware Survey

Android Mobile Platform Security and Malware Survey

An Android Malicious Code Detection Method Based on Improved DCA Algorithm

Attacks on Android Clipboard

Contact Info

Product

Resources

About