Challenges for Dynamic Analysis of iOS Applications

Abstract : Recent research indicates that mobile platforms, such as Android and Apple’s iOS increasingly face the threat of malware. These threats range from spyware that steals privacy sensitive information, such as location data or address book contents to malware that tries to collect ransom from users by locking the device and therefore rendering the device useless. Therefore, powerful analysis techniques and tools are necessary to quickly provide an analyst with the necessary information about an application to assess whether this application contains potentially malicious functionality.In this work, we focus on the challenges and open problems that have to be overcome to create dynamic analysis solutions for iOS applications. Additionally, we present two proof-of-concept implementations tackling two of these challenges. First, we present a basic dynamic analysis approach for iOS applications demonstrating the feasibility of dynamic analysis on iOS. Second, addressing the challenge that iOS applications are almost always user interface driven, we also present an approach to automatically exercise an application’s user interface. The necessity of exercising application user interfaces is demonstrated by the difference in code coverage that we achieve with (60%) and without (16%) such techniques. Therefore, this work is a first step towards comprehensive dynamic analysis for iOS applications.
Type de document :
Communication dans un congrès
David Hutchison; Takeo Kanade; Madhu Sudan; Demetri Terzopoulos; Doug Tygar; Moshe Y. Vardi; Gerhard Weikum; Jan Camenisch; Dogan Kesdogan; Josef Kittler; Jon M. Kleinberg; Friedemann Mattern; John C. Mitchell; Moni Naor; Oscar Nierstrasz; C. Pandu Rangan; Bernhard Steffen. International Workshop on Open Problems in Network Security (iNetSec), Jun 2011, Lucerne, Switzerland. Springer, Lecture Notes in Computer Science, LNCS-7039, pp.65-77, 2012, Open Problems in Network Security. 〈10.1007/978-3-642-27585-2_6〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01481507
Contributeur : Hal Ifip <>
Soumis le : jeudi 2 mars 2017 - 16:38:02
Dernière modification le : lundi 12 mars 2018 - 21:30:02
Document(s) archivé(s) le : mercredi 31 mai 2017 - 18:00:18

Fichier

978-3-642-27585-2_6_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Martin Szydlowski, Manuel Egele, Christopher Kruegel, Giovanni Vigna. Challenges for Dynamic Analysis of iOS Applications. David Hutchison; Takeo Kanade; Madhu Sudan; Demetri Terzopoulos; Doug Tygar; Moshe Y. Vardi; Gerhard Weikum; Jan Camenisch; Dogan Kesdogan; Josef Kittler; Jon M. Kleinberg; Friedemann Mattern; John C. Mitchell; Moni Naor; Oscar Nierstrasz; C. Pandu Rangan; Bernhard Steffen. International Workshop on Open Problems in Network Security (iNetSec), Jun 2011, Lucerne, Switzerland. Springer, Lecture Notes in Computer Science, LNCS-7039, pp.65-77, 2012, Open Problems in Network Security. 〈10.1007/978-3-642-27585-2_6〉. 〈hal-01481507〉

Partager

Métriques

Consultations de la notice

208

Téléchargements de fichiers

99