Embed Size (px)
DESCRIPTION
a web-based security analysis tool for android applications poster session at Advanced Cyber Security Center Annual Conference 2014, Boston, Nov 5th, 2014.
Citation preview
WebVbasedhSecurityhAnalysishToolhforhAndroidhApplicationsComputerhSciencehDepartmentPhMetropolitanhCollege
NebiyuhFelekePhTandhyhSimanjuntakPhWenjiehShiPhYutinghZhangPhLouhChitkushevhhnaberraPhtandhyPhwjshiPhdanazhPhltc@bu.edu
OnNgoingIWork
Architecture
OurITool
OtherIWebNbasedIAnalysisITools
Motivation
www.idc.com
www.kaspersky.com
EveryhfifthhAndroidVbasedhdevicehwithhKasperskyhsolutionshwashattackedhbyhmalwarehduringhreportedhperiod
www.kaspersky.com
Anubis
AIwebIportalIofIandroidIapplicationsIsecurity
ApplicationISecurityIAnalysisIbasedIonICategory
ProposedIWork
ImplicitIOpenIomponentsIinIFinanceIandIMedicalIApplications
AIframeworkItoIanalyzeItheIsecurityIofIandroidIapplicationsIthroughIstaticIanalysis
ProposeIandIimplementIaInumberIofImetricsIcomplementaryItoIthoseIinImanyIexistingIwebNbasedIanalysisItools:
IdentifyIRootIExploitIandIMaliciousIDomain
IdentifyIHiddenIFileIandICodeILoading
IdentifyIOpenIComponents
IdentifyIDangerousIPermissionsICombinationI
IdentifyIReNDelegation
IdentifyIOverIPrivilege
AnalysishToolhPage
SearchhToolhPage
ApplicationISecurityIEvolutionIAnalysis
IdentifyIandIclassifyIapplicationsIwithIsimilarfunctionalityIbasedIonIapplicationsEIdescriptionsIusingIkeywordIanalysis
InvestigateItheIassociationIbetweenIkeywordsIandotherIsecurityImetricsIsuchIasIpermissions
PerformIbothIindividualIandIcollectiveIanalysis
ReNdelegationOpenIComponentsOverNprivilegeDangerousIPermissionsICombinationHiddenIFilesMaliciousIDomainsRootIExploitCodeILoading
TypesIofIMetricsIChangedI
ProposedIWorkIdentifyImoreIsecurityImetricsIthatIcanIbeusedIforIevolutionIanalysis,IincludingIthoseusedIinIotherIexistingItools
InvestigateItheIpossibleIsecurityIevolutionpatternsIofIapplications
DistributionhofhAddedhVulnerabilities DistributionhofhDeletedhVulnerabilities
InvestigateItheIpossibleIsecurityIpatternsIofIapplicationsIwithIsimilarIfunctionality
NumberIofITypesIofIMetricsIChangedI
Per
cen
tage
IofI
Dat
aset
I
MetricsIinclude:
DetailsIofIThreeIMetricsI
TypeIofIMetricsI
Per
cen
tage
IofI
Dat
aset
I
NumberIofIAddedIVulnerabilitiesI
Per
cen
tage
IofI
Ap
plic
able
IDat
aset
I
Per
cen
tage
IofI
Ap
plic
able
IDat
aset
I
NumberIofIDeletedIVulnerabilitiesI
TotalIDownloadedIApplicationsIbasedIonICategory
IPercentageIofIRootIExploitIApplicationsIbasedIonICategory
Tota
lINu
mb
erI
Category
Tota
lIPer
cen
tage
I
Category
Tota
lIPer
cen
tage
I
PercentageIofITotalIOverIPrivilegeIApplicationsIbasedIonICategory
Category
InvestigateIpossibleIupdateIattacks,particularlyIthroughIanomalyIdetection
![Detection of Malicious Android Mobile Applications Based ... · B. Existing Crowdroid System . Existing . Crowdroid [6] system used . Strace. tool which can be run on Android based](https://img.dokumen.tips/doc/110x75/5ad995eb7f8b9a6d7e8b8f56/detection-of-malicious-android-mobile-applications-based-existing-crowdroid.jpg)
![[ Utility ] Android Tool V1](https://img.dokumen.tips/doc/110x75/55cf93fb550346f57b9efc28/-utility-android-tool-v1.jpg)
