Improving Android Application Security for Intent Based Attacks

被引:0
作者
Khadiranaikar, Babu [1 ]
Zavarsky, Pavol [1 ]
Malik, Yasir [1 ]
机构
[1] Concordia Univ, Dept Informat Syst Secur & Assurance Management, Edmonton, AB, Canada
来源
2017 8TH IEEE ANNUAL INFORMATION TECHNOLOGY, ELECTRONICS AND MOBILE COMMUNICATION CONFERENCE (IEMCON) | 2017年
关键词
Andriod Security; Inter Process Communication; Intents; Static Analysis; Dynamic Analysis;
D O I
暂无
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Inter-Process Communication (IPC) is an Android functionality that enables one application to use a component of another application. The IPC uses so called Intents, which is a message passing mechanism in Android, for this purpose. We examine the Android communication model to analyze the vulnerabilities pertaining to Intents during Inter-Process Communication by performing hybrid analysis and use the results obtained from the analysis to improve the overall application security and privacy from such vulnerabilities. Simulation results show how hybrid analysis and use of Intent certificates can improve the overall security of an Android application.
引用
收藏
页码:62 / 67
页数:6
相关论文
共 50 条
[31]   Evaluating the Privacy and Security Implications of AI-Based Medical Chatbots on Android Platforms [J].
Bao, T. Q. ;
Nghiem, P. T. ;
Khiem, T. L. ;
Trung, H. T. P. ;
Thong, T. D. ;
Trinh, P. D. ;
Doan Minh Hieu ;
Nhi True Le .
HYBRID ARTIFICIAL INTELLIGENT SYSTEMS, PT II, HAIS 2024, 2025, 14858 :26-38
[32]   SEBASTiAn: A static and extensible black-box application security testing tool for iOS and Android applications [J].
Pagano, Francesco ;
Romdhana, Andrea ;
Caputo, Davide ;
Verderame, Luca ;
Merlo, Alessio .
SOFTWAREX, 2023, 23
[33]   Malware Detection and Classification in Android Application Using Simhash-Based Feature Extraction and Machine Learning [J].
Al-Kahla, Wafaa ;
Taqieddin, Eyad ;
Shatnawi, Ahmed S. ;
Al-Ouran, Rami .
IEEE ACCESS, 2024, 12 :174255-174273
[34]   A Multi-Tier Security Analysis of Official Car Management Apps for Android [J].
Chatzoglou, Efstratios ;
Kambourakis, Georgios ;
Kouliaridis, Vasileios .
FUTURE INTERNET, 2021, 13 (03) :1-35
[35]   DroidARA: Android Application Automatic Categorization Based on API Relationship Analysis [J].
Fan, Wenhao ;
Chen, Ye ;
Liu, Yuan'an ;
Wu, Fan .
IEEE ACCESS, 2019, 7 :157987-157996
[36]   Improving Android Malware Detection with Entropy Bytecode-to-Image Encoding Framework [J].
Makkawy, Saleh J. ;
Alblwi, Abdalrahman H. ;
De Lucia, Michael J. ;
Barner, Kenneth E. .
2024 33RD INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATIONS AND NETWORKS, ICCCN 2024, 2024,
[37]   Where Are We Looking for Security Concerns? Understanding Android Security Static Analysis [J].
Schmeelk, Suzanna .
PROCEEDINGS OF THE FUTURE TECHNOLOGIES CONFERENCE (FTC) 2019, VOL 2, 2020, 1070 :467-483
[38]   HyDroid: android malware detection using network flow combined with permissions and intent filter [J].
Boukhamla, Akram Zine Eddine ;
Verma, Abhishek .
INTERNATIONAL JOURNAL OF MOBILE COMMUNICATIONS, 2023, 22 (01) :70-91
[39]   IIFA: Modular Inter-app Intent Information Flow Analysis of Android Applications [J].
Tiwari, Abhishek ;
Gross, Sascha ;
Hammer, Christian .
SECURITY AND PRIVACY IN COMMUNICATION NETWORKS, SECURECOMM, PT II, 2019, 305 :335-349
[40]   Dynamic Security Analysis on Android: A Systematic Literature Review [J].
Sutter, Thomas ;
Kehrer, Timo ;
Rennhard, Marc ;
Tellenbach, Bernhard ;
Klein, Jacques .
IEEE ACCESS, 2024, 12 :57261-57287
12345