Chiachih Wu,Yajin Zhou,Kunal Patel,Zhenkai Liang,Xuxian Jiang

DOI: https://doi.org/10.14722/ndss.2014.23164

2014-01-01

Abstract:Recent years have experienced explosive growth of smartphone sales. Inevitably, the rise in the popularity of smartphones also makes them an attractive target for attacks. In light of these threats, current mobile platform providers have developed various server-side vetting processes to block malicious applications (“apps”). While helpful, they are still far from ideal in achieving their goals. To make matters worse, the presence of alternative (less-regulated) mobile marketplaces also opens up new attack vectors, which necessitate client-side solutions (e.g., mobile anti-virus software) to run on mobile devices. However, existing client-side solutions still exhibit limitations in their capability or deployability. In this paper, we present AirBag, a lightweight OS-level virtualization approach to enhance the popular Android platform and boost our defense capability against mobile malware infection. Assuming a trusted smartphone OS kernel and the fact that untrusted apps will be eventually installed onto users’ phones, AirBag is designed to isolate and prevent them from infecting our normal systems (e.g., corrupting the phone firmware) or stealthily leaking private information. More specifically, by dynamically creating an isolated runtime environment with its own dedicated namespace and virtualized system resources, AirBag not only allows for transparent execution of untrusted apps, but also effectively mediates their access to various system resources or phone functionalities (e.g., SMSs or phone calls). We have implemented a proof-of-concept prototype on three representative mobile devices, i.e., Google Nexus One, Nexus 7, and Samsung Galaxy S III. The evaluation results with a number of untrusted apps, including real-world mobile malware, demonstrate its practicality and effectiveness.

Yajin Zhou,Xinwen Zhang,Xuxian Jiang,Vincent W. Freeh

DOI: https://doi.org/10.1007/978-3-642-21599-5_7

2011-01-01

Abstract:Smartphones have been becoming ubiquitous and mobile users are increasingly relying on them to store and handle personal information. However, recent studies also reveal the disturbing fact that users' personal information is put at risk by (rogue) smartphone applications. Existing solutions exhibit limitations in their capabilities in taming these privacy-violating smartphone applications. In this paper, we argue for the need of a new privacy mode in smartphones. The privacy mode can empower users to flexibly control in a fine-grained manner what kinds of personal information will be accessible to an application. Also, the granted access can be dynamically adjusted at runtime in a fine-grained manner to better suit a user's needs in various scenarios (e.g., in a different time or location). We have developed a system called TISSA that implements such a privacy mode on Android. The evaluation with more than a dozen of information-leaking Android applications demonstrates its effectiveness and practicality. Furthermore, our evaluation shows that TISSA introduces negligible performance overhead.

Xiao Xuan,Ye Wang,Shanping Li

DOI: https://doi.org/10.1109/repa.2014.6894842

2014-01-01

Abstract:Nowadays mobile devices have rapidly developed. Privacy protection for mobile operating systems has become a hot topic in industry and research, which also brings new challenges. The scenarios in mobile operating systems are different from those in tradition systems. Users of mobile systems face more and more new risks in new scenarios. On the other hand, personal data is growing exponentially every day. It reminds us the importance of privacy protection is also increasing at the same time.In this paper, we study the privacy patterns for mobile operating systems. We elicit privacy-related requirements in three ways - knowledge from domain experts, literature review on public documents of existing mature systems and feedback from real users. Based on these requirements, we propose 7 privacy patterns which are presented with the RePa Requirements Pattern Template. All of these patterns were refined by professional business analysts which concrete the result of our work. We believe that our findings can help business analysts with the description for privacy requirements in future mobile operating system development projects.

Yiming Jing,Gail-Joon Ahn,Ziming Zhao,Hongxin Hu

DOI: https://doi.org/10.1109/tdsc.2014.2366457

2015-09-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Mobile operating systems, such as Apple's iOS and Google's Android, have supported a ballooning market of feature-rich mobile applications. However, helping users understand and mitigate security risks of mobile applications is still an ongoing challenge. While recent work has developed various techniques to reveal suspicious behaviors of mobile applications, there exists little work to answer the following question: are those behaviors necessarily inappropriate? In this paper, we seek an approach to cope with such a challenge and present a continuous and automated risk assessment framework called RiskMon that uses machine-learned ranking to assess risks incurred by users' mobile applications, especially Android applications. RiskMon combines users' coarse expectations and runtime behaviors of trusted applications to generate a risk assessment baseline that captures appropriate behaviors of applications. With the baseline, RiskMon assigns a risk score on every access attempt on sensitive information and ranks applications by their cumulative risk scores. Furthermore, we demonstrate how RiskMon supports risk mitigation with automated permission revocation. We also discuss a proof-of-concept implementation of RiskMon as an extension of the Android mobile platform and provide both system evaluation and usability study of our methodology.

computer science, information systems, software engineering, hardware & architecture

Yuan Zhang,Min Yang,Guofei Gu,Hao Chen

DOI: https://doi.org/10.1109/TIFS.2016.2581304

IF: 7.231

2016-01-01

IEEE Transactions on Information Forensics and Security

Abstract:To protect sensitive resources from unauthorized use, modern mobile systems, such as Android and iOS, design a permission-based access control model. However, current model could not enforce fine-grained control over the dynamic permission use contexts, causing two severe security problems. First, any code package in an application could use the granted permissions, inducing attackers to embed mal...

Rui Chang,Liehui Jiang,Wenzhi Chen,Hongqi He,Shuiqiao Yang

DOI: https://doi.org/10.1109/cit.2016.14

2016-01-01

Abstract:As the number of smart devices continues to grow dramatically, programmes and data handled by such smart devices have become the primary targets of hackers and malwares. ARM-Android is the most widespread platform for smart devices. Access to privacy-and security-relevant parts of the API is controlled by the corresponding permission in a manifest. However, while requesting access to permissions, these applications may offer opportunities to malicious codes to gain access to other inaccessible resources which will cause a series of security issues. Recently, many researchers focus on the permission-based mechanism which restricts accesses of users and applications to critical resources on an ARM-Android device. Few works among permission analysis, however, pay attention to the prevention of permission leakage on both hardware and software frameworks. In this paper we tackle the challenge of providing our permission-based security architecture on ARM-Android platform. We propose an usage and access control model and an effective method of preventing permission leakage based on ARM TrustZone security extension. In contrast to previous work, the proposed security architecture provides a flexible mandatory access control on Android middleware, Linux kernel, and hardware layers. The evaluation results demonstrate the effectiveness in mitigating permission leakage vulnerabilities.

Rui Chang,Liehui Jiang,Wenzhi Chen,Hong-qi He,Shuiqiao Yang,Hang Jiang,Wei Liu,Yong Liu

DOI: https://doi.org/10.1002/cpe.4180

2018-01-01

Abstract:This paper discusses security issues on the user equipment, which is the last mile of social networks. One of the main Achilles' heel of social networks is not the organization of networks themselves, but the user devices, typically Android ones. The existing system of privileges makes it easy to infiltrate the network via applications installed on users' devices. Conventional signature-based and static analysis methods are vulnerable. Access to privacy- and security-relevant parts of the application programming interface is controlled by the corresponding permission in a manifest file. While requesting access to permissions, it may offer opportunities to malicious codes, which will cause security issues. Few works among permission analysis, however, pay attention to the prevention of permission leakage on both hardware and software frameworks. In this paper we tackle the challenge of providing our multilayered permission-based security extension scheme on Android platforms. We propose a usage and access control model and an effective method of preventing permission leakage based on ARM TrustZone security extension mechanism. In contrast to previous work, the proposed security architecture provides a permission-based mandatory access control on Android middleware, Linux kernel, and hardware layers. The evaluation results demonstrate the effectiveness of the proposed scheme in mitigating permission leakage vulnerabilities.

Huikang Hao,Zhoujun Li,Haibo Yu

DOI: https://doi.org/10.1109/TASE.2015.16

2015-01-01

Abstract:As the most popular platform, Android dominates the mobile device market. In order to enrich the functions of the phone and facilitate the utilization of users, more and more Android applications have been developed. Unfortunately, a greatly increasing amount of malware targeting the Android platform mingle with the numerous benign applications and hide in almost every market, even the official market Google Play. Therefore, it is a pressing concern about how to measure and assess the risk of such apps. In this paper, we propose a novel approach to deal with this problem. First of all, through the empirical analysis with market-scale dataset, we verify the following fact: for a set of benign applications in the same category, the type and number of permissions they request are similar and consistent in general. Hence, for the benign applications in each category, we can construct a standard permission vector model, which can be used as a baseline to measure and assess the risk of applications in the category. For a downloaded app, we extract its requested permissions to form a permission vector, whose deviation from the baseline can be calculated by employing Euclidean distance and weighted Euclidean distance. The deviation can be used as metric to measure and assess the risk of the app. Finally, an experiment on real-world dataset, consisting of 7737 market apps and 1260 malware samples, is conducted to evaluate our method. The empirical result validates the effectiveness of our approach to help users understand the risk when they decide to install an app.

Daojing He,Sammy Chan,Mohsen Guizani

DOI: https://doi.org/10.1109/MWC.2015.7054729

2015-01-01

Abstract:Due to the quantum leap in functionality, the rate of upgrading traditional mobile phones to smartphones is tremendous. One of the most attractive features of smartphones is the availability of a large number of apps for users to download and install. However, it also means hackers can easily distribute malware to smartphones, launching various attacks. This issue should be addressed by both preventive approaches and effective detection techniques. This article first discusses why smartphones are vulnerable to security attacks. Then it presents malicious behavior and threats of malware. Next, it reviews the existing malware prevention and detection techniques. Besides more research in these directions, it points out efforts from app developers, app store administrators, and users, who are also required to defend against such malware.

Yeonjoon Lee,Tongxin Li,Nan Zhang,Soteris Demetriou,Mingming Zha,XiaoFeng Wang,Kai Chen,Xiaoyong Zhou,Xinhui Han,Michael Grace

DOI: https://doi.org/10.1109/dsn.2017.33

2017-01-01

Abstract:Android allows developers to build apps with app installation functionality themselves with minimal restriction and support like any other functionalities. Given the critical importance of app installation, the security implications of the approach can be significant. This paper reports the first systematic study on this issue, focusing on the security guarantees of different steps of the App Installation Transaction (AIT). We demonstrate the serious consequences of leaving AIT development to individual developers: most installers (e.g., Amazon AppStore, DTIgnite, Baidu) are riddled with various security-critical loopholes, which can be exploited by attackers to silently install any apps, acquiring dangerous-level permissions or even unauthorized access to system resources. Surprisingly, vulnerabilities were found in all steps of AIT. The attacks we present, dubbed Ghost Installer Attack (GIA), are found to pose a realistic threat to Android ecosystem. Further, we developed both a user-app-level and a system-level defense that are innovative and practical.

Abdullah Ozbay,Kemal Bicakci

DOI: https://doi.org/10.48550/arXiv.2203.10583

2022-03-20

Cryptography and Security

Abstract:Android devices are equipped with many pre-installed applications which have the capability of tracking and monitoring users. Although applications coming pre-installed pose a great danger to user security and privacy, they have received little attention so far among researchers in the field. In this study, we collect a dataset comprising such applications and make it publicly available. Using this dataset, we analyze tracker SDKs, manifest files and the use of cloud services and report our results. We also conduct a user survey to understand concerns and perceptions of users. Last but not least, we present a risk scoring system which assigns scores for smart phones consolidating our findings based on carefully weighted criteria. With this scoring system, users could give their own trust decisions based on the available concise information about the security and privacy impacts of applications pre-installed on their Android devices.

Hengshu Zhu,Hui Xiong,Yong Ge,Enhong Chen

DOI: https://doi.org/10.1145/2623330.2623705

2014-01-01

Abstract:With the rapid prevalence of smart mobile devices, the number of mobile Apps available has exploded over the past few years. To facilitate the choice of mobile Apps, existing mobile App recommender systems typically recommend popular mobile Apps to mobile users. However, mobile Apps are highly varied and often poorly understood, particularly for their activities and functions related to privacy and security. Therefore, more and more mobile users are reluctant to adopt mobile Apps due to the risk of privacy invasion and other security concerns. To fill this crucial void, in this paper, we propose to develop a mobile App recommender system with privacy and security awareness. The design goal is to equip the recommender system with the functionality which allows to automatically detect and evaluate the security risk of mobile Apps. Then, the recommender system can provide App recommendations by considering both the Apps' popularity and the users' security preferences. Specifically, a mobile App can lead to security risk because insecure data access permissions have been implemented in this App. Therefore, we first develop the techniques to automatically detect the potential security risk for each mobile App by exploiting the requested permissions. Then, we propose a flexible approach based on modern portfolio theory for recommending Apps by striking a balance between the Apps' popularity and the users' security concerns, and build an App hash tree to efficiently recommend Apps. Finally, we evaluate our approach with extensive experiments on a large-scale data set collected from Google Play. The experimental results clearly validate the effectiveness of our approach.

Jiao Zhu,Hongwei Li,Xin Peng,Wenyun Zhao

DOI: https://doi.org/10.3969/j.issn.1000-386x.2014.10.007

2014-01-01

Abstract:Android system is one of the most popular intelligent terminal operating systems in the world.With users number growing quickly,its market sharing expands rapidly as well,and a great deal of Android applications is available.In response to malicious software in Android applications market and safeguarding the system security of users’mobile phones,Android system uses the permission-based security mechanism and demands its applications declaring the system permissions used in advance.In this paper,we explore and study the relationship between the applications function and the system permissions of Android.After gathering massive amount of data from internet in regard to Android applications market,we analyse the semantic relationship between the function description of Android applications and the permission declared by current Android system using the technologies of information retrieval and semantic analysis,and finally get a relationship model.This model can be used for future studying the rationality and security of the permission declaration in Android applications,and provides the application market and Android users with supports for application credibility assessment.

Weixian Yao,Yexuan Li,Weiye Lin,Tianhui Hu,Imran Chowdhury,Rahat Masood,Suranga Seneviratne

DOI: https://doi.org/10.48550/arXiv.2007.03905

2020-07-08

Abstract:Third-party security apps are an integral part of the Android app ecosystem. Many users install them as an extra layer of protection for their devices. There are hundreds of such security apps, both free and paid in Google Play Store and some of them are downloaded millions of times. By installing security apps, the smartphone users place a significant amount of trust towards the security companies who developed these apps, because a fully functional mobile security app requires access to many smartphone resources such as the storage, text messages and email, browser history, and information about other installed applications. Often these resources contain highly sensitive personal information. As such, it is essential to understand the mobile security apps ecosystem to assess whether is it indeed beneficial to install them. To this end, in this paper, we present the first empirical study of Android security apps. We analyse 100 Android security apps from multiple aspects such as metadata, static analysis, and dynamic analysis and presents insights to their operations and behaviours. Our results show that 20% of the security apps we studied potentially resell the data they collect from smartphones to third parties; in some cases, even without the user consent. Also, our experiments show that around 50% of the security apps fail to identify malware installed on a smartphone.

Cryptography and Security

Guan-Shi ZHENG,Zheng ZHANG,Wei-Hua ZHANG

DOI: https://doi.org/10.15888/j.cnki.csa.005354

2016-01-01

Abstract:The popularity of mobile system has attracted malware developers. To ensure the security of users’ privacy and property, there has been numerous solutions targeting current security issues of mobile system. In this paper, it introduces the prevalent mobile operating systems and the mobile application security analysis methodologies. In addition, it makes analysis and discussion. At last, it proposes the prospects of possible directions of mobile application analysis approaches and endswith a conclusion.

Mu Zhang,Yue Duan,Qian Feng,Heng Yin

DOI: https://doi.org/10.1145/2810103.2813669

2015-01-01

Abstract:To improve the security awareness of end users, Android markets directly present two classes of literal app information: (1) permission requests and (2) textual descriptions. Unfortunately, neither can serve the needs. A permission list is not only hard to understand but also inadequate; textual descriptions provided by developers are not security-centric and are significantly deviated from the permissions. To fill in this gap, we propose a novel technique to automatically generate security-centric app descriptions, based on program analysis. We implement a prototype system, DescribeMe, and evaluate our system using both DroidBench and real-world Android apps. Experimental results demonstrate that DescribeMe enables a promising technique which bridges the gap between descriptions and permissions. A further user study shows that automatically produced descriptions are not only readable but also effectively help users avoid malware and privacy-breaching apps.

Yu-xuan HE,Kui MENG,Gong-shen LIU,Lin XU

DOI: https://doi.org/10.3969/j.issn.1002-0802.2014.06.018

2014-01-01

Abstract:Mobile devices, especially smartphones, occupy a large proportion of people’s daily communica-tion. Smartphones contain more sensitive data than normal personal computers, such as call history, contacts and messages. Mobile security tends to be the main concern currently. This paper analyzes the security issues about iOS system, and points out the risks of iOS system’s security. Finally, aiming at these safety prob-lems, many solutions are proposed to enhance security and stability of jailbroken iOS system.

Jian Mao,Hanjun Ma,Yue Chen,Yaoqi Jia,Zhenkai Liang

DOI: https://doi.org/10.3233/jhs-160538

2016-01-01

Journal of High Speed Networks

Abstract:The application permission system is one of the key components of Android security. Developers often use it incorrectly and claim more permissions than necessary, due to limitations of developers’ knowledge and development tools. When application’s vulnerabilities are exploited, the additional permissions give attackers more capability to carry out attacks. Hybrid mobile applications (apps) are a class of mobile apps that are built from web technologies, such as HTML, JavaScript, and CSS. In such applications, it is often easier to inject third-party code through vulnerabilities. When developers do not specify app’s permissions correctly, the injected code will result in dangerous actions breaching system security. In this paper, we develop an automatic tool to assist developers to identify the permissions required by the apps based on the hybrid mobile apps’ runtime permission checking.

Pang Yongqiang,Zhu Ming

DOI: https://doi.org/10.3969/j.issn.1000-386X.2008.04.096

2008-01-01

Abstract:Smartphones are used widely,and they are being exposed to different kinds of security attacks.Effective security management can safeguard user's data and information.The architecture and the safety characteristic of System OS are analyzed,and a new security management software for smartphones is designed and implemented.The technique of active detection and file server plug-ins based on behaviors of programs is applied.It can detect the unknown malicious codes and enhance file access control so as to implement safe data and information management on smartphones.

Qing-yang ZHANG,Yang YANG,Jiu-jun CHENG,Jing-xue LIAO

DOI: https://doi.org/10.3969/j.issn.1671-1122.2014.11.008

2014-01-01

Abstract:With the rapid development of information technology, the Internet area has inundated with information security problems. With the maturity of hacker technology, the invasion of a personal computer has become an easy task, so personal computer privacy and permission management have become more seriously in our daily life. Traditional methods that only use login password would threat to computer security and privacy when owner’s friends or colleagues use his computer. Based on the RSA encryption mode, we design a dynamic password encryption algorithm and propose a mechanism on computer access permission management mechanism. Firstly, the mechanism could increase the difficulty of password cracking and improve the security of encryption with the use of dynamic password created by both PC and mobile terminal. We combine plaintext coding with RSA encryption algorithm for dynamic password in order to avoid some problems of dynamic password generated by time seed algorithm. In addition, we added control information into the dynamic password, and loaded the filter driver of file in the kernel after the screen was successfully unlocked, therefore, owner’s private directory would be safer and the system protection grade of sensitive documents would be higher. The mechanism we implemented is aimed to solve as mall and awkward problem in our daily life. Experimental results show that mechanism on computer access permission management based on the dynamic password can solve the problem of personal privacy and access permission management effectively, thus it has a good prospect of application.