Detecting Malicious Collusion Between Mobile Software Applications: The Android TM Case
作者: Irina Măriuca Asăvoae , Jorge Blasco , Thomas M. Chen , Harsha Kumara Kalutarage , Igor Muttik
DOI: 10.1007/978-3-319-59439-2_3
关键词:
摘要: Malware has been a major problem in desktop computing for decades. With the recent trend towards mobile computing, malware is moving rapidly to smartphone platforms. “Total grown 151% over past year”, according McAfee®’s quarterly treat report September 2016. By design, AndroidTM “open” download apps from different sources. Its security depends on restricting by combining digital signatures, sandboxing, and permissions. Unfortunately, these restrictions can be bypassed, without user noticing, colluding which combined permissions allow them carry out attacks. In this chapter we ongoing research results our ACID project suggest number of reliable means detect collusion, tackling aforementioned problems. We present conceptual work topic collusion discuss automated tools arising it.
swan.ac.uk
springer.com
sci-hub.se 参考文章(42)
Fu Song, Tayssir Touili, Model-Checking for Android Malware Detection asian symposium on programming languages and systems. pp. 216- 235 ,(2014) , 10.1007/978-3-319-12736-1_12
Philippe Beaucamps, Isabelle Gnaedig, Jean-Yves Marion, Abstraction-Based Malware Analysis Using Rewriting and Model Checking Computer Security – ESORICS 2012. ,vol. 7459, pp. 806- 823 ,(2012) , 10.1007/978-3-642-33167-1_46
Li Li, Alexandre Bartel, Tegawendé F. Bissyandé, Jacques Klein, Yves Le Traon, ApkCombiner: Combining Multiple Android Apps to Support Inter-App Analysis information security conference. pp. 513- 527 ,(2015) , 10.1007/978-3-319-18467-8_34
K. Krishnamoorthy, Handbook of statistical distributions with applications ,(2006)
Hubert Ritzdorf, Analyzing Covert Channels on Mobile Devices ETH Zürich, Department of Computer Science. ,(2012) , 10.3929/ETHZ-A-007305126
Damien Octeau, Yves Le Traon, Eric Bodden, Alexandre Bartel, Patrick McDaniel, Jacques Klein, Somesh Jha, Effective inter-component communication mapping in Android with Epicc: an essential step towards holistic security analysis usenix security symposium. pp. 543- 558 ,(2013)
Ki-Hyeon Kim, Mi-Jung Choi, Android malware detection using multivariate time-series technique asia pacific network operations and management symposium. pp. 198- 202 ,(2015) , 10.1109/APNOMS.2015.7275426
Henk K. Diemer, Bojan Zdrnja, Michael Blanchard, Ken Bechtel, Andrew Lee, David Harley, Igor Muttik, AVIEN Malware Defense Guide for the Enterprise ,(2007)
Claudio Marforio, Srdjan Capkun, Aurélien Francillon, Application Collusion Attack on the Permission-Based Security Model and its Implications for Modern Smartphone Systems CTIT technical reports series. ,vol. 724, ,(2010) , 10.3929/ETHZ-A-006936208
Gerardo Canfora, Andrea De Lorenzo, Eric Medvet, Francesco Mercaldo, Corrado Aaron Visaggio, Effectiveness of Opcode ngrams for Detection of Multi Family Android Malware availability, reliability and security. pp. 333- 340 ,(2015) , 10.1109/ARES.2015.57