How Your Phone Camera Can Be Used to Stealthily Spy on You: Transplantation Attacks against Android Camera Service
作者: Zhongwen Zhang , Peng Liu , Ji Xiang , Jiwu Jing , Lingguang Lei
关键词:
摘要: Based on the observations that spy-on-user attacks by calling Android APIs will be detected out API auditing, we studied possibility of a "transplantation attack", through which malicious app can take privacy-harming pictures to spy users without auditing being aware it. Usually, picture, apps need call Camera Service runs in mediaserver process. Transplantation attack is transplant picture taking code from process process, and this its own address space any IPC. As result, evaded. Our experiments confirm transplantation indeed exists. Also, makes much more stealthy. The evaluation result shows nearly half 69 smartphones (manufactured 8 vendors) tested let discovered us succeed. Moreover, evade 7 Antivirus detectors, Device Administration set used carry mobile device management enterprise environments. inspires uncover subtle design/implementation deficiency security.
acm.org
elsevier.com
sci-hub.se 参考文章(30)
Yajin Zhou, Xinwen Zhang, Xuxian Jiang, Vincent W. Freeh, Taming information-stealing smartphone applications (on Android) trust and trustworthy computing. pp. 93- 107 ,(2011) , 10.1007/978-3-642-21599-5_7
Mauro Conti, Vu Thien Nga Nguyen, Bruno Crispo, CRePE: context-related policy enforcement for android international conference on information security. ,vol. 6531, pp. 331- 345 ,(2010) , 10.1007/978-3-642-18178-8_29
Machigar Ongtang, Stephen McLaughlin, William Enck, Patrick McDaniel, Semantically rich application-centric security in Android Security and Communication Networks. ,vol. 5, pp. 658- 673 ,(2012) , 10.1002/SEC.360
Adam J Aviv, Katherine Gibson, Evan Mossop, Matt Blaze, Jonathan M Smith, None, Smudge attacks on smartphone touch screens WOOT'10 Proceedings of the 4th USENIX conference on Offensive technologies. pp. 1- 7 ,(2010)
Shashi Shekhar, Michael Dietz, Anhei Shu, Dan S. Wallach, Yuliy Pisetsky, Quire: lightweight provenance for smart phone operating systems usenix security symposium. pp. 23- 23 ,(2011)
Alexander Moshchuk, Adrienne Porter Felt, Helen J. Wang, Erika Chin, Steven Hanna, Permission re-delegation: attacks and defenses usenix security symposium. pp. 22- 22 ,(2011)
Wu Zhou, Yajin Zhou, Xuxian Jiang, Peng Ning, Detecting repackaged smartphone applications in third-party android marketplaces Proceedings of the second ACM conference on Data and Application Security and Privacy - CODASKY '12. pp. 317- 326 ,(2012) , 10.1145/2133601.2133640
Nan Xu, Fan Zhang, Yisha Luo, Weijia Jia, Dong Xuan, Jin Teng, Stealthy video capturer Proceedings of the second ACM conference on Wireless network security - WiSec '09. pp. 69- 78 ,(2009) , 10.1145/1514274.1514285
Erika Chin, Adrienne Porter Felt, Kate Greenwood, David Wagner, Analyzing inter-application communication in Android Proceedings of the 9th international conference on Mobile systems, applications, and services - MobiSys '11. pp. 239- 252 ,(2011) , 10.1145/1999995.2000018
William Enck, Machigar Ongtang, Patrick McDaniel, On lightweight mobile phone application certification computer and communications security. pp. 235- 245 ,(2009) , 10.1145/1653662.1653691