Android Apps:Static Analysis Based on Permission Classification

被引:3
|
作者
Zhenjiang Dong [1 ]
Hui Ye [2 ]
Yan Wu [1 ]
Shaoyin Cheng [2 ]
Fan Jiang [2 ]
机构
[1] ZTE Corporation
[2] Information Technology Security Evaluation Center,University of Science and Technology of China
来源
ZTECommunications | 2013年 / 11卷 / 01期
基金
中央高校基本科研业务费专项资金资助; 高等学校博士学科点专项科研基金;
关键词
malware; software analysis; static analysis; Android;
D O I
暂无
中图分类号
TN929.5 [移动通信]; TP309 [安全保密];
学科分类号
080402 ; 080904 ; 0810 ; 081001 ; 081201 ; 0839 ; 1402 ;
摘要
Android has a strict permission management mechanism. Any applications that try to run on the Android system need to obtain permission. In this paper, we propose an efficient method of detecting malicious applications in the Android system. First, hundreds of permissions are classified into different groups. The application programming interfaces (APIs) associated with permissions that can interact with the outside environment are called sink functions. The APIs associated with other permissions are called taint functions. e construct association tables for block variables and function variables of each application. Malicious applications can then be detected by using the static taint-propagation method to analyze these tables.
引用
收藏
页码:62 / 66
页数:5
相关论文
共 50 条
  • [31] Android application classification and anomaly detection with graph-based permission patterns
    Sokolova, Karina
    Perez, Charles
    Lemercier, Marc
    DECISION SUPPORT SYSTEMS, 2017, 93 : 62 - 76
  • [32] Aper: Evolution-Aware Runtime Permission Misuse Detection for Android Apps
    Wang, Sinan
    Wang, Yibo
    Zhan, Xian
    Wang, Ying
    Liu, Yepang
    Luo, Xiapu
    Cheung, Shing-Chi
    2022 ACM/IEEE 44TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING (ICSE 2022), 2022, : 125 - 137
  • [33] Android Security: Permission Based Attacks
    Jain, Arushi
    Prachi
    PROCEEDINGS OF THE 10TH INDIACOM - 2016 3RD INTERNATIONAL CONFERENCE ON COMPUTING FOR SUSTAINABLE GLOBAL DEVELOPMENT, 2016, : 2754 - 2759
  • [34] Permission Weighting Approaches in Permission Based Android Malware Detection
    Kural, Oguz Emre
    Sahin, Durmus Ozkan
    Akleylek, Sedat
    Kilic, Erdal
    2019 4TH INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND ENGINEERING (UBMK), 2019, : 134 - 139
  • [35] Static analysis of Android Auto infotainment and on-board diagnostics II apps
    Mandal, Amit Kr
    Panarotto, Federica
    Cortesi, Agostino
    Ferrara, Pietro
    Spoto, Fausto
    SOFTWARE-PRACTICE & EXPERIENCE, 2019, 49 (07) : 1131 - 1161
  • [36] FirmwareDroid: Towards Automated Static Analysis of Pre-Installed Android Apps
    Sutter, Thomas
    Tellenbach, Bernhard
    2023 IEEE/ACM 10TH INTERNATIONAL CONFERENCE ON MOBILE SOFTWARE ENGINEERING AND SYSTEMS, MOBILESOFT, 2023, : 12 - 22
  • [37] Improving Automated GUI Exploration of Android Apps via Static Dependency Analysis
    Guo, Wunan
    Shen, Liwei
    Su, Ting
    Peng, Xin
    Xie, Weiyang
    2020 IEEE INTERNATIONAL CONFERENCE ON SOFTWARE MAINTENANCE AND EVOLUTION (ICSME 2020), 2020, : 557 - 568
  • [38] A Method for Automatic Android Malware Detection Based on Static Analysis and Deep Learning
    Ibrahim, Mulhem
    Issa, Bayan
    Jasser, Muhammed Basheer
    IEEE ACCESS, 2022, 10 : 117334 - 117352
  • [39] On The (In)Effectiveness of Static Logic Bomb Detection for Android Apps
    Samhi, Jordan
    Bartel, Alexandre
    IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2022, 19 (06) : 3822 - 3836
  • [40] Static analysis of Android programs
    Payet, Etienne
    Spoto, Fausto
    INFORMATION AND SOFTWARE TECHNOLOGY, 2012, 54 (11) : 1192 - 1201
12345