Abstract
Android uses a permission-based security model to limit its app's capability. However, the user's decision is almost completely unrelated to the app's risk level due to insucient information. The platform openness and the plethora of available software also make dangerous apps (not necessarily malware) very common. To enhance end-user security awareness, we propose a new approach and tool to evaluate the potential risks of Android app packages. We integrated various static and dynamic analysis techniques into a framework able to detect suspicious activities, map them to ne-grained risk categories and evaluate them with the fuzzy logic algorithm. This tool can retrieve and analyse large quantities of apps automatically and provides a simple logic for other tools to integrate with. Finally, our software has been tested on a large set of real-world samples, both benign and malicious, demonstrating its eciency (4s/app) and a reasonable capacity to evaluate the risk of Android app packages
Highlights
Nowadays, the vast majority (84.4%, Q3 2014, IDC) of smartphones [1] and a huge share (67.5%, Q1, 2014, IDC) of tablets [2] are powered by Android, a mobile operating system based on Linux kernel and maintained by Google
We evaluate application’s risk level using the fuzzy logic algorithm, trying to overcome/mitigate the uncertainty limitation arose from the nature of automatic analysis;
For the sake of efficiency, in many cases dynamic analysis is only performed on apks which are classified as “risky” by the static analysis modules, in order to confirm the dangerousness of the sample
Summary
The vast majority (84.4%, Q3 2014, IDC) of smartphones [1] and a huge share (67.5%, Q1, 2014, IDC) of tablets [2] are powered by Android, a mobile operating system based on Linux kernel and maintained by Google. End users have almost no useful information about the danger of their choices, since the potential risk of an application is not evident For this reason, we designed and implemented an automated Android app analyser, based on both static and dynamic analysis techniques, able to evaluate the potential risk level of an Android app package (apk ). An automated system can successfully deal with objective truth but less with “reasonable” decisions This phenomenon is true in Android app analysis environment: in all previous researches, including static [4,5,6,7,8,9,10], dynamic [11,12,13] or hybrid [14] analysis approaches, this final decision is made by calling for human intervention.
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
