Improving Android Application Security for Intent Based Attacks

被引:0
|
作者
Khadiranaikar, Babu [1 ]
Zavarsky, Pavol [1 ]
Malik, Yasir [1 ]
机构
[1] Concordia Univ, Dept Informat Syst Secur & Assurance Management, Edmonton, AB, Canada
来源
2017 8TH IEEE ANNUAL INFORMATION TECHNOLOGY, ELECTRONICS AND MOBILE COMMUNICATION CONFERENCE (IEMCON) | 2017年
关键词
Andriod Security; Inter Process Communication; Intents; Static Analysis; Dynamic Analysis;
D O I
暂无
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Inter-Process Communication (IPC) is an Android functionality that enables one application to use a component of another application. The IPC uses so called Intents, which is a message passing mechanism in Android, for this purpose. We examine the Android communication model to analyze the vulnerabilities pertaining to Intents during Inter-Process Communication by performing hybrid analysis and use the results obtained from the analysis to improve the overall application security and privacy from such vulnerabilities. Simulation results show how hybrid analysis and use of Intent certificates can improve the overall security of an Android application.
引用
收藏
页码:62 / 67
页数:6
相关论文
共 50 条
  • [1] Detectors for Intent ICC Security Vulnerability with Android IDE
    Meng, Xianyong
    Qian, Kai
    Lo, Dan
    Bhattachrya, Prabir
    2018 TENTH INTERNATIONAL CONFERENCE ON UBIQUITOUS AND FUTURE NETWORKS (ICUFN 2018), 2018, : 355 - 357
  • [2] Application of clustering methods for analyzing the security of Android applications
    Pavlenko E.Y.
    Yarmak A.V.
    Moskvin D.A.
    Automatic Control and Computer Sciences, 2017, 51 (8) : 867 - 873
  • [3] Practical Static Analysis of Detecting Intent-based Permission Leakage in Android Application
    Wu, Songyang
    Zhang, Yong
    Jin, Bo
    Cao, Wei
    2017 17TH IEEE INTERNATIONAL CONFERENCE ON COMMUNICATION TECHNOLOGY (ICCT 2017), 2017, : 1953 - 1957
  • [4] Identifying and Analyzing Security Risks in Android Application Components
    Zhang, Ming
    INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2016, 10 (09): : 165 - 174
  • [5] Communication-Based Attacks Detection in Android Applications
    Chuan Ma
    Tao Wang
    Limin Shen
    Dongkui Liang
    Shuping Chen
    Dianlong You
    Tsinghua Science and Technology, 2019, 24 (05) : 596 - 614
  • [6] Communication-Based Attacks Detection in Android Applications
    Ma, Chuan
    Wang, Tao
    Shen, Limin
    Liang, Dongkui
    Chen, Shuping
    You, Dianlong
    TSINGHUA SCIENCE AND TECHNOLOGY, 2019, 24 (05) : 596 - 614
  • [7] Security in Intent-Based Networking: Challenges and Solutions
    Ahmad, Ijaz
    Malinen, Jere
    Christou, Filippos
    Porambage, Pawani
    Kirstaedter, Andreas
    Suomalainen, Jani
    2023 IEEE CONFERENCE ON STANDARDS FOR COMMUNICATIONS AND NETWORKING, CSCN, 2023, : 296 - 301
  • [8] Research on Static Analysis Technology of Android Application Security Defects
    Chen, Lu
    Liu, Xing
    Ma, Yuan-yuan
    Shi, Cong-cong
    Li, Ni-ge
    2016 INTERNATIONAL CONFERENCE ON ELECTRICAL ENGINEERING AND AUTOMATION (ICEEA 2016), 2016,
  • [9] TySA: Enforcing Security Policies for Safeguarding Against Permission-Induced Attacks in Android Applications
    Hu, Xinwen
    IEEE ACCESS, 2024, 12 : 165026 - 165041
  • [10] Android App behavior-intent inference based on API usage analysis
    Shen K.
    Ye X.
    Liu X.
    Li B.
    Ye, Xiaojun (yexj@tsinghua.edu.cn), 1600, Tsinghua University (57): : 1139 - 1144
12345