Skip to Main content Skip to Navigation
Conference papers

Detecting Code Reuse in Android Applications Using Component-Based Control Flow Graph

Abstract : Recently smartphones and mobile devices have gained incredible popularity for their vibrant feature-rich applications (or apps). Because it is easy to repackage Android apps, software plagiarism has become a serious problem. In this paper, we present an accurate and robust system DroidSim to detect code reuse. DroidSim calculates similarity score only with component-based control flow graph (CB-CFG). CB-CFG is a graph of which nodes are Android APIs and edges represent control flow precedence order in each Android component. Our system can be applied to detect repackaged apps and malware variants. We evaluate DroidSim on 121 apps and 706 malware variants. The results show that our system has no false negative and a false positive of 0.83% for repackaged apps, and a detection ratio of 96.60% for malware variants. Besides, ADAM is used to obfuscate apps and the result reveals that ADAM has no influence on our system.
Document type :
Conference papers
Complete list of metadatas

Cited literature [16 references]  Display  Hide  Download

https://hal.inria.fr/hal-01370361
Contributor : Hal Ifip <>
Submitted on : Thursday, September 22, 2016 - 2:24:09 PM
Last modification on : Thursday, September 22, 2016 - 3:14:24 PM

File

978-3-642-55415-5_12_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Xin Sun, Yibing Zhongyang, Zhi Xin, Bing Mao, Li Xie. Detecting Code Reuse in Android Applications Using Component-Based Control Flow Graph. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. pp.142-155, ⟨10.1007/978-3-642-55415-5_12⟩. ⟨hal-01370361⟩

Share

Metrics

Record views

517

Files downloads

643