SneakLeak+: Large-scale klepto apps analysis

Shweta Bhandari; Frederic Herbreteau; Vijay Laxmi; Akka Zemmari; Manoj Singh Gaur; Partha S. Roop

首页> 外文期刊>Future generation computer systems >SneakLeak+: Large-scale klepto apps analysis

【24h】

SneakLeak+: Large-scale klepto apps analysis

机译：Sneakleak +：大规模的Klepto Apps分析

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

User data is touted as new oil in our times of digital economy. Colluding apps can pose a threat to leak private information in Android. In this paper, a technique is proposed to address the threat emanating from multiple colluding Android applications (apps). Android framework is not made to protect the data that is going outside an app. In such a scenario, individual app shall appear benign whereas conspiring apps, if present, can leak sensitive end-user data to other sinks. This phenomenon of intentional data leakage is termed as collusion, and involved apps are called colluding apps. Existing app analyzers focused on single app analysis which gets defeated by scattering leaking instructions across multiple apps. We present SneakLeak+, a model-checking based technique for detection of app collusion. The proposed method can analyze multiple apps simultaneously to identify the set of colluding apps. SneakLeak+ statically analyzes the reverse engineered intermediate code of each app, extract security relevant information, and represent the extracted information into a compact form suitable for formal verification. The formal analysis engine is used to verify the presence/absence of potential inter-app communication-based leakage. Since, official Android app repository, Google Play Store offer massive number of apps, volumetric analysis is crucial for purposeful contribution. To maintain scalability of the proposed method, we build an abstract model of the apps that represent only potential leaks. Currently, there is no standard app dataset available to verify efficacy and scalability of methods dealing with collusion detection. Hence, we developed 64 apps exhibiting collusion as our benchmark dataset, now, available as open-source. To demonstrate the efficacy and scalability of our proposal, we conduct a set of experiments on 11,000 apps from Google Play Store and benchmark datasets. Our experiments show that SneakLeak+ achieves highest precision (100%), highest recall (93.3%) and highest F-measure (0.97) as compared to existing state-of-art approaches. On an average, it will take around 142 min to analyze the entire device.

机译：在我们的数字经济中，用户数据被吹捧为新油。勾结应用程序可能会在Android中泄漏私人信息威胁。在本文中，提出了一种技术来解决来自多个勾结Android应用程序的威胁（应用程序）。 android框架不是为了保护应用程序外的数据。在这样的场景中，单个应用程序应出现良性，而是阴谋应用程序，如果存在，可以将敏感的最终用户数据泄漏到其他汇位。故意数据泄漏的这种现象被称为勾结，并且涉及的应用程序称为勾结应用程序。现有的应用分析仪专注于单个应用程序分析，通过跨多个应用程序分散泄漏指令来击败。我们呈现Sneakleak +，一种基于模型检查的技术，用于检测应用勾结。该方法可以同时分析多个应用程序以识别群组集合。 Sneakleak +静态分析每个应用的反向工程中间代码，提取安全相关信息，并将提取的信息代表到适合形式验证的紧凑表单中。正式的分析引擎用于验证基于潜在的应用间通信泄漏的存在/不存在。自从官方Android应用程序存储库以来，Google Play商店提供大量的应用程序，体积分析对于有目的的贡献至关重要。为了保持所提出的方法的可扩展性，我们构建了一个应用程序的抽象模型，该应用程序只表示潜在的泄漏。目前，没有标准的应用数据集可用于验证处理串行检测的方法的功效和可扩展性。因此，我们开发了64个应用程序，展示勾结为我们的基准数据集，现在可用作开源。为了展示我们提案的功效和可扩展性，我们在Google Play商店和基准数据集中开展了一组关于11,000个应用程序的实验。我们的实验表明，与现有的最先进方法相比，Sneakleak +达到最高精度（100％），最高召回（93.3％）和最高的F测量（0.97）。平均而言，它将需要大约142分钟来分析整个设备。

著录项

来源
《Future generation computer systems》 |2020年第8期|593-603|共11页
作者
Shweta Bhandari; Frederic Herbreteau; Vijay Laxmi; Akka Zemmari; Manoj Singh Gaur; Partha S. Roop;
展开▼
作者单位

Malaviya National Institute of Technology Jaipur (MNIT Jaipur) India;

University of Bordeaux Bordeaux INP CNRS LaBRI 33405 Talence France;

Malaviya National Institute of Technology Jaipur (MNIT Jaipur) India;

University of Bordeaux Bordeaux INP CNRS LaBRI 33405 Talence France;

Indian Institute of Technology Jammu India;

University of Auckland New Zealand;

展开▼
收录信息美国《科学引文索引》(SCI);美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类
关键词
Android app collusion; Multi-app analysis; Verification; Model checking; Information leakage; Privilege escalation;

机译：Android应用勾结;多应用分析;确认;模型检查;信息泄漏;特权升级;

相似文献

外文文献
中文文献
专利

1. Application of Factor Analysis in a Large-Scale Industrial Wastewater Treatment Plant Simulation Using Principal Component Analysis-Artificial Neural Network Hybrid Approach (Case Study: Fajr Industrial Wastewater Treatment Plant, Mahshahr, Iran) [J] . Homed Hasanlou, Hamid Abdolabadi, Mohsen Aghashahi Environmental Progress . 2015,第5期

机译：主成分分析-人工神经网络混合法在因子分析在大型工业废水处理厂模拟中的应用（案例研究：伊朗马哈尔的Fajr工业废水处理厂）
2. Large-scale road network vulnerability analysis: a sensitivity analysis based approach [J] . Paramet Luathep, Agachai Sumalee, H. W. Ho, Transportation . 2011,第5期

机译：大规模路网脆弱性分析：基于敏感性分析的方法
3. Numerical analysis of large-scale sound fields using iterative methods part I: Application of Krylov subspace methods to boundary element analysis [J] . Yasuda Y, Sakamoto S, Kosaka Y, Journal of computational acoustics . 2007,第4期

机译：使用迭代方法的大规模声场的数值分析第一部分：Krylov子空间方法在边界元分析中的应用
4. New Approaches for Performance Optimization and Analysis of Large-Scale Dynamic Social Network Analysis using Anytime Anywhere Algorithms [C] . Eunice E. Santos, Vairavan Murugappan, John Korah IEEE International Parallel and Distributed Processing Symposium Workshops . 2020

机译：使用随时随地算法进行大型动态社交网络分析的性能优化和分析的新方法
5. Adaptive Constrained Independent Vector Analysis: Application to Large-scale fMRI Analysis [D] . Bhinge, Suchita. 2020

机译：自适应约束的独立载体分析：在大规模FMRI分析中的应用
6. A randomized approach to speed up the analysis of large-scale read-count data in the application of CNV detection [O] . WeiBo Wang, Wei Sun, Wei Wang, 2018

机译：CNV检测应用中一种加快大规模读取计数数据分析的随机方法
7. Large-scale road network vulnerability analysis : a sensitivity analysis based approach [O] . Luathep P, Sumalee A, Ho HW, 2011

机译：大规模路网脆弱性分析：基于敏感性分析的方法

SneakLeak+: Large-scale klepto apps analysis

摘要

著录项

相似文献

相关主题

期刊订阅