SuSi: A Tool for the Fully Automated Classification and Categorization of Android Sources and Sinks
作者: Siegfried Rasthofer , Eric Bodden , Steven Arzt
DOI:
关键词:
摘要: Today’s smartphone users face a security dilemma: many apps they install operate on privacy-sensitive data, although might originate from developers whose trustworthiness is hard to judge. Researchers have proposed more and sophisticated static dynamic analysis tools as an aid assess the behavior of such applications. Those tools, however, are only good privacy policies configured with. Policies typically refer list sources sensitive data well sinks which leak untrusted observers. Sources moving target: new versions mobile operating system regularly introduce methods, need be reconfigured take them into account. In this work we show that, at least for case Android, API comprises hundreds sinks. We propose SuSi, novel fully automated machine-learning approach identifying directly Android source code. On our training set, SuSi achieves recall precision than 92%. To provide fine-grained information, further categorizes (e.g., unique identifier, location etc.) network, file, etc.), with average about 89%. also that current program can circumvented because use hand-picked lists largely incomplete, hence allowing potential leaks go unnoticed.
tu-darmstadt.de参考文章(28)
Michael Backes, Sebastian Gerling, Christian Hammer, Matteo Maffei, Philipp von Styp-Rekowsky, AppGuard: enforcing user requirements on android apps tools and algorithms for construction and analysis of systems. pp. 543- 548 ,(2013) , 10.1007/978-3-642-36742-7_39
Abdallah Abbey Sebyala, Temitope Olukemi, Lionel Sacks, Active Platform Security through Intrusion Detection Using Naïve Bayesian Network for Anomaly Detection ,(2002)
Damien Octeau, William Enck, Patrick McDaniel, Swarat Chaudhuri, A study of android application security usenix security symposium. pp. 21- 21 ,(2011)
Clint Gibler, Jonathan Crussell, Jeremy Erickson, Hao Chen, AndroidLeaks: automatically detecting potential privacy leaks in android applications on a large scale trust and trustworthy computing. pp. 291- 307 ,(2012) , 10.1007/978-3-642-30921-2_17
Harry Zhang, The Optimality of Naive Bayes. the florida ai research society. pp. 562- 567 ,(2004)
Ross Anderson, Hassen Saïdi, Rubin Xu, Aurasium: practical policy enforcement for Android applications usenix security symposium. pp. 27- 27 ,(2012)
Ondrej Lhotak, Eric Bodden, Patrick Lam, Laurie Hendren, The Soot framework for Java program analysis: a retrospective ,(2011)
William Enck, Patrick McDaniel, Jaeyeon Jung, Byung-Gon Chun, Peter Gilbert, Anmol N. Sheth, Landon P. Cox, TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones operating systems design and implementation. pp. 393- 407 ,(2010) , 10.5555/1924943.1924971
Johannes Hoffmann, Martin Ussath, Thorsten Holz, Michael Spreitzenbarth, Slicing droids: program slicing for smali code acm symposium on applied computing. pp. 1844- 1851 ,(2013) , 10.1145/2480362.2480706
Christopher Mann, Artem Starostin, A framework for static detection of privacy leaks in android applications acm symposium on applied computing. pp. 1457- 1462 ,(2012) , 10.1145/2245276.2232009