SoProtector: Securing Native C/C++ Libraries for Mobile Applications
作者: Ning Zhang , Guangquan Xu , Guozhu Meng , Xi Zheng
DOI: 10.1007/978-3-030-05057-3_32
关键词:
摘要: Java code is easy to be decompiled, and third-party SO files are used frequently by developers improve development efficiency. Therefore, more core functions of Android applications implemented in the native layer. However, there neither comprehensive security research work nor automated analysis tools on layer, especially for that dynamically loaded within applications. To solve this problem, SoProtector, a novel effective system proposed defend against privacy leaks, which mainly analyzes data stream between two levels: application Native layers. In addition, SoProtector includes real-time monitor detect malicious binary code. Our evaluation using 3400 has demonstrated can sources, sinks smudges than most static tools; And it detects effectively blocks 82% load with low performance overhead.
springer.com
sci-hub.st 参考文章(22)
Clint Gibler, Jonathan Crussell, Jeremy Erickson, Hao Chen, AndroidLeaks: automatically detecting potential privacy leaks in android applications on a large scale trust and trustworthy computing. pp. 291- 307 ,(2012) , 10.1007/978-3-642-30921-2_17
Eui Chul Richard Shin, Dawn Song, Reza Moazzezi, None, Recognizing functions in binaries with neural networks usenix security symposium. pp. 611- 626 ,(2015)
Christian Rossow, Thorsten Holz, Jannik Pewny, Behrad Garmany, Robert Gawlik, Cross-Architecture Bug Search in Binary Executables 2015 IEEE Symposium on Security and Privacy. pp. 709- 724 ,(2015) , 10.1109/SP.2015.49
William Enck, Patrick McDaniel, Jaeyeon Jung, Byung-Gon Chun, Peter Gilbert, Anmol N. Sheth, Landon P. Cox, TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones operating systems design and implementation. pp. 393- 407 ,(2010) , 10.5555/1924943.1924971
Zheli Liu, Dejiang Luo, Jin Li, Xiaofeng Chen, Chunfu Jia, N-Mobishare: new privacy-preserving location-sharing system for mobile online social networks International Journal of Computer Mathematics. ,vol. 93, pp. 384- 400 ,(2016) , 10.1080/00207160.2014.917179
William Enck, Peter Gilbert, Seungyeop Han, Vasant Tendulkar, Byung-Gon Chun, Landon P. Cox, Jaeyeon Jung, Patrick McDaniel, Anmol N. Sheth, TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones ACM Transactions on Computer Systems. ,vol. 32, pp. 5- ,(2014) , 10.1145/2619091
Peter Hornyack, Seungyeop Han, Jaeyeon Jung, Stuart Schechter, David Wetherall, These aren't the droids you're looking for Proceedings of the 18th ACM conference on Computer and communications security - CCS '11. pp. 639- 652 ,(2011) , 10.1145/2046707.2046780
Steven Arzt, Siegfried Rasthofer, Christian Fritz, Eric Bodden, Alexandre Bartel, Jacques Klein, Yves Le Traon, Damien Octeau, Patrick McDaniel, FlowDroid: precise context, flow, field, object-sensitive and lifecycle-aware taint analysis for Android apps programming language design and implementation. ,vol. 49, pp. 259- 269 ,(2014) , 10.1145/2594291.2594299
Andrea Saracino, Daniele Sgandurra, Gianluca Dini, Fabio Martinelli, MADAM: Effective and Efficient Behavior-based Android Malware Detection and Prevention IEEE Transactions on Dependable and Secure Computing. ,vol. 15, pp. 83- 97 ,(2018) , 10.1109/TDSC.2016.2536605
Brian Krupp, Nigamanth Sridhar, Wenbing Zhao, SPE: Security and Privacy Enhancement Framework for Mobile Devices IEEE Transactions on Dependable and Secure Computing. ,vol. 14, pp. 433- 446 ,(2017) , 10.1109/TDSC.2015.2465965