NativeProtector: Protecting Android Applications by Isolating and Intercepting Third-Party Native Libraries

Abstract : An increasing number of Android developers are incorporating third-party native libraries in their applications for code reuse, CPU-intensive tasks and other purposes. However current Android security mechanism can not regulate the native code in applications well. Many approaches have been proposed to enforce security of Android applications, but few of them involve security of the native libraries in Android applications.In this paper, we propose NativeProtector, a system that regulates the third-party native libraries in Android applications. The standalone Android application is separated into two components: the server app and the client app where server app contains the native libraries for providing services from the native libraries while the client app contains the rest parts of the original app. The client app binds to the server app at the launching time, and all native function calls are replaced with interprocess calls to the server app. NativeProtector also generates the stub libraries intercept system calls in server app and enforce security of the native libraries in server app. We have implemented a prototype of NativeProtector. Our evaluation shows that NativeProtector can successfully detect and block the attempts of performing dangerous operations by the third-party native libraries in Android applications. The performance overhead introduced by NativeProtector is acceptable.
Type de document :
Communication dans un congrès
Jaap-Henk Hoepman; Stefan Katzenbeisser. 31st IFIP International Information Security and Privacy Conference (SEC), May 2016, Ghent, Belgium. IFIP Advances in Information and Communication Technology, AICT-471, pp.337-351, 2016, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-33630-5_23〉
Liste complète des métadonnées

Littérature citée [22 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01369567
Contributeur : Hal Ifip <>
Soumis le : mercredi 21 septembre 2016 - 10:58:29
Dernière modification le : mercredi 21 septembre 2016 - 11:15:36
Document(s) archivé(s) le : jeudi 22 décembre 2016 - 12:58:10

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Yu-Yang Hong, Yu-Ping Wang, Jie Yin. NativeProtector: Protecting Android Applications by Isolating and Intercepting Third-Party Native Libraries. Jaap-Henk Hoepman; Stefan Katzenbeisser. 31st IFIP International Information Security and Privacy Conference (SEC), May 2016, Ghent, Belgium. IFIP Advances in Information and Communication Technology, AICT-471, pp.337-351, 2016, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-33630-5_23〉. 〈hal-01369567〉

Partager

Métriques

Consultations de la notice

109