Tracking explicit and control flows in Java and native Android apps code,

Mariem Graa 1, 2, 3 Frédéric Cuppens 2, 1 Nora Cuppens-Boulahia 2, 1 Jean-Louis Lanet 4
1 Lab-STICC_TB_CID_SFIIS
Lab-STICC - Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance
4 TAMIS - Threat Analysis and Mitigation for Information Security
Inria Rennes – Bretagne Atlantique , IRISA-D4 - LANGAGE ET GÉNIE LOGICIEL
Abstract : The native app development is increased in Android systems to implement CPU-intensive applications such as game engines, signal processing, and physics simulation. However, native code analysis is very difficult and requires a lot of time which explains the limited number of systems that track information flow in native libraries. But, none of them detects the sensitive information leakage through control flows at native level. In this paper, we combine dynamic and static taint analysis to propagate taint along control dependencies. Our approach has proven to be effective in analyzing several malicious Android applications that invoke native librairies with reasonable performance overheads.
Type de document :
Communication dans un congrès
ICISSP 2016 : 2nd International Conference on Information Systems Security and Privacy,, Feb 2016, Roma, Italy. 2016, Proceedings of the 2nd International Conference on Information Systems Security and Privacy 〈http://www.icissp.org/〉. 〈10.5220/0005686603070316〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01385196
Contributeur : Jean-Louis Lanet <>
Soumis le : vendredi 21 octobre 2016 - 07:50:36
Dernière modification le : mardi 16 janvier 2018 - 15:54:26

Identifiants

Citation

Mariem Graa, Frédéric Cuppens, Nora Cuppens-Boulahia, Jean-Louis Lanet. Tracking explicit and control flows in Java and native Android apps code,. ICISSP 2016 : 2nd International Conference on Information Systems Security and Privacy,, Feb 2016, Roma, Italy. 2016, Proceedings of the 2nd International Conference on Information Systems Security and Privacy 〈http://www.icissp.org/〉. 〈10.5220/0005686603070316〉. 〈hal-01385196〉

Partager

Métriques

Consultations de la notice

593