Trust It or Not? An Empirical Study of Rating Mechanism and Its Impact on Smartphone Malware Propagation

Abstract : Malicious applications (malware) have attracted much attention from both academia and industry. Thanks to this, common users start to install anti-malware tools to help protect their phones. However, we notice that attackers can still take advantage of some existing mechanisms to induce users to download malware and bypass anti-malware software. In this paper, we focus on the app rating mechanism on smartphones and aim to evaluate its impact on malware propagation. More specifically, we investigate how this mechanism can be maliciously used to leverage the trust levels of users and achieve particular goals (i.e., inducing users to download malware). In the evaluation, we develop a malicious rating system and conduct a study with over 400 participants. Our results indicate that such rating mechanism can affect users’ trust on app download and can be utilized to propagate malware.
Type de document :
Communication dans un congrès
Sheikh Mahbub Habib; Julita Vassileva; Sjouke Mauw; Max Mühlhäuser. 10th IFIP International Conference on Trust Management (TM), Jul 2016, Darmstadt, Germany. IFIP Advances in Information and Communication Technology, AICT-473, pp.146-153, 2016, Trust Management X. 〈10.1007/978-3-319-41354-9_11〉
Liste complète des métadonnées

Littérature citée [6 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01438341
Contributeur : Hal Ifip <>
Soumis le : mardi 17 janvier 2017 - 16:07:43
Dernière modification le : mardi 17 janvier 2017 - 16:18:28
Document(s) archivé(s) le : mardi 18 avril 2017 - 15:21:24

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Wenjuan Li, Lijun Jiang, Weizhi Meng, Lam-For Kwok. Trust It or Not? An Empirical Study of Rating Mechanism and Its Impact on Smartphone Malware Propagation. Sheikh Mahbub Habib; Julita Vassileva; Sjouke Mauw; Max Mühlhäuser. 10th IFIP International Conference on Trust Management (TM), Jul 2016, Darmstadt, Germany. IFIP Advances in Information and Communication Technology, AICT-473, pp.146-153, 2016, Trust Management X. 〈10.1007/978-3-319-41354-9_11〉. 〈hal-01438341〉

Partager

Métriques

Consultations de la notice

105