Detecting Code Reuse in Android Applications Using Component-Based Control Flow Graph

Abstract : Recently smartphones and mobile devices have gained incredible popularity for their vibrant feature-rich applications (or apps). Because it is easy to repackage Android apps, software plagiarism has become a serious problem. In this paper, we present an accurate and robust system DroidSim to detect code reuse. DroidSim calculates similarity score only with component-based control flow graph (CB-CFG). CB-CFG is a graph of which nodes are Android APIs and edges represent control flow precedence order in each Android component. Our system can be applied to detect repackaged apps and malware variants. We evaluate DroidSim on 121 apps and 706 malware variants. The results show that our system has no false negative and a false positive of 0.83% for repackaged apps, and a detection ratio of 96.60% for malware variants. Besides, ADAM is used to obfuscate apps and the result reveals that ADAM has no influence on our system.
Type de document :
Communication dans un congrès
Nora Cuppens-Boulahia; Frédéric Cuppens; Sushil Jajodia; Anas Abou El Kalam; Thierry Sans. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. Springer, IFIP Advances in Information and Communication Technology, AICT-428, pp.142-155, 2014, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-642-55415-5_12〉
Liste complète des métadonnées

Littérature citée [16 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01370361
Contributeur : Hal Ifip <>
Soumis le : jeudi 22 septembre 2016 - 14:24:09
Dernière modification le : jeudi 22 septembre 2016 - 15:14:24

Fichier

978-3-642-55415-5_12_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Xin Sun, Yibing Zhongyang, Zhi Xin, Bing Mao, Li Xie. Detecting Code Reuse in Android Applications Using Component-Based Control Flow Graph. Nora Cuppens-Boulahia; Frédéric Cuppens; Sushil Jajodia; Anas Abou El Kalam; Thierry Sans. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. Springer, IFIP Advances in Information and Communication Technology, AICT-428, pp.142-155, 2014, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-642-55415-5_12〉. 〈hal-01370361〉

Partager

Métriques

Consultations de la notice

193

Téléchargements de fichiers

218