scholarly journals Android Collusion: Detecting Malicious Applications Inter-Communication through SharedPreferences

Information ◽  
2020 ◽  
Vol 11 (6) ◽  
pp. 304 ◽  
Author(s):  
Rosangela Casolare ◽  
Fabio Martinelli ◽  
Francesco Mercaldo ◽  
Antonella Santone
Keyword(s):  
Model Checking ◽  
Mobile Devices ◽  
Temporal Logic ◽  
Private Information ◽  
Recent Trend ◽  
Experimental Results ◽  
Single Application ◽  
Collusion Attack ◽  
Android Applications ◽  
Inter Communication

The Android platform is currently targeted by malicious writers, continuously focused on the development of new types of attacks to extract sensitive and private information from our mobile devices. In this landscape, one recent trend is represented by the collusion attack. In a nutshell this attack requires that two or more applications are installed to perpetrate the malicious behaviour that is split in more than one single application: for this reason anti-malware are not able to detect this attack, considering that they analyze just one application at a time and that the single colluding application does not exhibit any malicious action. In this paper an approach exploiting model checking is proposed to automatically detect whether two applications exhibit the ability to perform a collusion through the SharedPreferences communication mechanism. We formulate a series of temporal logic formulae to detect the collusion attack from a model obtained by automatically selecting the classes candidate for the collusion, obtained by two heuristics we propose. Experimental results demonstrate that the proposed approach is promising in collusion application detection: as a matter of fact an accuracy equal to 0.99 is obtained by evaluating 993 Android applications.

scholarly journals Detecting Colluding Inter-App Communication in Mobile Environment

2020 ◽  
Vol 10 (23) ◽  
pp. 8351
Author(s):  
Rosangela Casolare ◽  
Fabio Martinelli ◽  
Francesco Mercaldo ◽  
Antonella Santone
Keyword(s):  
Model Checking ◽  
Mobile Devices ◽  
Private Information ◽  
End Users ◽  
Home Automation ◽  
Mobile Environment ◽  
Data Support ◽  
Bank Transfer ◽  
Android Applications

The increase in computing capabilities of mobile devices has, in the last few years, made possible a plethora of complex operations performed from smartphones and tablets end users, for instance, from a bank transfer to the full management of home automation. Clearly, in this context, the detection of malicious applications is a critical and challenging task, especially considering that the user is often totally unaware of the behavior of the applications installed on their device. In this paper, we propose a method to detect inter-app communication i.e., a colluding communication between different applications with data support to silently exfiltrate sensitive and private information. We based the proposed method on model checking, by representing Android applications in terms of automata and by proposing a set of logic properties to reduce the number of comparisons and a set of logic properties automatically generated for detecting colluding applications. We evaluated the proposed method on a set of 1092 Android applications, including different colluding attacks, by obtaining an accuracy of 1, showing the effectiveness of the proposed method.

scholarly journals Unbounded Model Checking for ATL

2021 ◽  
Author(s):  
Michał Kański ◽  
Artur Niewiadomski ◽  
Magdalena Kacprzak ◽  
Wojciech Penczek ◽  
Wojciech Nabiałek
Keyword(s):  
Model Checking ◽  
Temporal Logic ◽  
Symbolic Model Checking ◽  
Experimental Results ◽  
Multi Agent Systems ◽  
Symbolic Model ◽  
Agent Systems ◽  
Multi Agent

In this paper, we deal with verification of multi-agent systems represented as concurrent game structures. To express properties to be verified, we use Alternating-Time Temporal Logic (ATL) formulas. We provide an implementation of symbolic model checking for ATL and preliminary, but encouraging experimental results.

scholarly journals Vulnerability Evaluation Method through Correlation Analysis of Android Applications

2019 ◽  
Vol 11 (23) ◽  
pp. 6637
Author(s):  
Cheolmin Yeom ◽  
Yoojae Won
Keyword(s):  
Correlation Analysis ◽  
Mobile Devices ◽  
Mobile Device ◽  
Diagnostic Tool ◽  
Evaluation Method ◽  
Data Use ◽  
Single Application ◽  
Vulnerability Evaluation ◽  
Android Applications

Due to people in companies use mobile devices to access corporate data, attackers targeting corporate data use vulnerabilities in mobile devices. Most vulnerabilities in applications are caused by the carelessness of developers, and confused deputy attacks and data leak attacks using inter-application vulnerabilities are possible. These vulnerabilities are difficult to find through the single-application diagnostic tool that is currently being studied. This paper proposes a process to automate the decompilation of all the applications on a user’s mobile device and a mechanism to find inter-application vulnerabilities. The mechanism generates a list and matrix, detailing the vulnerabilities in the mobile device. The proposed mechanism is validated through an experiment on an actual mobile device with four installed applications, and the results show that the mechanism can accurately capture all application risks as well as inter-application risks. Through this mechanism, users can expect to find the risks in their mobile devices in advance and prevent damage.

scholarly journals Call Graph and Model Checking for Fine-Grained Android Malicious Behaviour Detection

2020 ◽  
Vol 10 (22) ◽  
pp. 7975
Author(s):  
Giacomo Iadarola ◽  
Fabio Martinelli ◽  
Francesco Mercaldo ◽  
Antonella Santone
Keyword(s):  
Data Structure ◽  
Model Checking ◽  
Private Information ◽  
Control Flow ◽  
Graph Data ◽  
Call Graph ◽  
Fine Grained ◽  
Call Graphs ◽  
Android Applications ◽  
Flow Graphs

The increasing diffusion of mobile devices, widely used for critical tasks such as the transmission of sensitive and private information, corresponds to an increasing need for methods to detect malicious actions that can undermine our data. As demonstrated in the literature, the signature-based approach provided by antimalware is not able to defend users from new threats. In this paper, we propose an approach based on the adoption of model checking to detect malicious families in the Android environment. We consider two different automata representing Android applications, based respectively on Control Flow Graphs and Call Graphs. The adopted graph data structure allows to detect potentially malicious behaviour and also localize the code where the malicious action happens. We experiment the effectiveness of the proposed method evaluating more than 3000 real-world Android samples (with 2552 malware belonging to 21 malicious family), by reaching an accuracy ranging from 0.97 to 1 in malicious family detection.

A framework for the specification and validation of dynamic reconfigurable systems

2021 ◽  
Vol 21 (2) ◽  
pp. 18-32
Author(s):  
Antoine El-Hokayem ◽  
Marius Bozga ◽  
Joseph Sifakis
Keyword(s):  
Model Checking ◽  
Temporal Logic ◽  
Linear Time ◽  
Experimental Results ◽  
Effective Model ◽  
Reconfigurable Systems ◽  
Verification Tool ◽  
Linear Time Temporal Logic ◽  
Checking Procedure ◽  
System Configurations

We study a framework for the specification and validation of dynamic reconfigurable systems. The framework is based on configuration logic for the description of architecture styles which are families of architectures sharing common connectivity features. We express specifications in the Temporal Configuration Logic (TCL), a linear time temporal logic built from atomic formulas characterizing system configurations and temporal modalities. Two non-trivial benchmarks are introduced to show the adequacy of TCL for the specification of dynamic reconfigurable systems. We study an effective model-checking procedure based on SMT techniques for a non-trivial fragment of TCL which has been implemented in a prototype runtime verification tool. We provide preliminary experimental results illustrating the capabilities of the tool on the considered benchmark systems.

scholarly journals Building Standardized and Secure Mobile Health Services Based on Social Media

Electronics ◽  
2020 ◽  
Vol 9 (12) ◽  
pp. 2208
Author(s):  
Jesús D. Trigo ◽  
Óscar J. Rubio ◽  
Miguel Martínez-Espronceda ◽  
Álvaro Alesanco ◽  
José García ◽  
...  
Keyword(s):  
Social Media ◽  
Mobile Devices ◽  
Mobile Health ◽  
Healthcare Services ◽  
Small Scale ◽  
Proof Of Concept ◽  
Privacy And Security ◽  
Health Level 7 ◽  
Information Embedding ◽  
Android Applications

Mobile devices and social media have been used to create empowering healthcare services. However, privacy and security concerns remain. Furthermore, the integration of interoperability biomedical standards is a strategic feature. Thus, the objective of this paper is to build enhanced healthcare services by merging all these components. Methodologically, the current mobile health telemonitoring architectures and their limitations are described, leading to the identification of new potentialities for a novel architecture. As a result, a standardized, secure/private, social-media-based mobile health architecture has been proposed and discussed. Additionally, a technical proof-of-concept (two Android applications) has been developed by selecting a social media (Twitter), a security envelope (open Pretty Good Privacy (openPGP)), a standard (Health Level 7 (HL7)) and an information-embedding algorithm (modifying the transparency channel, with two versions). The tests performed included a small-scale and a boundary scenario. For the former, two sizes of images were tested; for the latter, the two versions of the embedding algorithm were tested. The results show that the system is fast enough (less than 1 s) for most mHealth telemonitoring services. The architecture provides users with friendly (images shared via social media), straightforward (fast and inexpensive), secure/private and interoperable mHealth services.

Verification of the feed-forward control for a piezoelectric actuator using differential flatness approach

2018 ◽  
Vol 30 (3) ◽  
pp. 438-444
Author(s):  
Jomah Alzoubi ◽  
Shadi A Alboon ◽  
Amin Alqudah
Keyword(s):  
Mobile Devices ◽  
Piezoelectric Actuator ◽  
Experimental Results ◽  
Control Voltage ◽  
Differential Flatness ◽  
Digital Cameras ◽  
Precise Positioning ◽  
Feed Forward ◽  
Feed Forward Control ◽  
Micro Technology

In the last decade, the applications of nano- and micro-technology are widely used in many fields. In the modern mobile devices, such as digital cameras, there is an increased demand to achieve fast and precise positioning for some parts such as the recording sensor. Therefore, a smart material (piezoelectric) is used to achieve this requirement. This article discusses the feed-forward control for a piezoelectric actuator using differential flatness approach. The differential flatness approach is used to calculate the required voltage to control the piezoelectric actuator movement. The control voltage will be applied to the real actuator. The simulation and experimental results are compared for the actuator. The aim of this article is to verify the feed-forward control for second eigenfrequency using the differential flatness approach for the piezoelectric actuator.

Misuse Detection for Mobile Devices Using Behaviour Profiling

2011 ◽  
Vol 1 (1) ◽  
pp. 41-53 ◽  
Author(s):  
Fudong Li ◽  
Nathan Clarke ◽  
Maria Papadaki ◽  
Paul Dowland
Keyword(s):  
Mobile Devices ◽  
Error Rate ◽  
Text Message ◽  
Modern Society ◽  
Experimental Results ◽  
Equal Error Rate ◽  
Misuse Detection ◽  
General Application ◽  
Point Of Entry ◽  
Application Specific

Mobile devices have become essential to modern society; however, as their popularity has grown, so has the requirement to ensure devices remain secure. This paper proposes a behaviour-based profiling technique using a mobile user’s application usage to detect abnormal activities. Through operating transparently to the user, the approach offers significant advantages over traditional point-of-entry authentication and can provide continuous protection. The experiment employed the MIT Reality dataset and a total of 45,529 log entries. Four experiments were devised based on an application-level dataset containing the general application; two application-specific datasets combined with telephony and text message data; and a combined dataset that included both application-level and application-specific. Based on the experiments, a user’s profile was built using either static or dynamic profiles and the best experimental results for the application-level applications, telephone, text message, and multi-instance applications were an EER (Equal Error Rate) of 13.5%, 5.4%, 2.2%, and 10%, respectively.

scholarly journals A Review on Efficient Identification of Posture Alterations Through the Analysis of the Footprint and Artificial Vision Technologies

2021 ◽  
Vol 20 ◽  
pp. 15-24
Author(s):  
Taha Ahmadi ◽  
Hernández Cristian ◽  
Cubillos Neil
Keyword(s):  
Mobile Devices ◽  
Mobile Applications ◽  
Visual Analysis ◽  
Computer Programs ◽  
Experimental Results ◽  
Artificial Vision ◽  
Portable Devices

This article presents a review of the most relevant manual techniques and technologies developed from the field of artificial vision aimed at identifying biomechanical alterations. The purpose is to describe the most important aspects of each technology, focused on the description of each of its stages and experimental results, which suggest the integration of mobile devices with artificial vision techniques, in addition to the different computer programs used for such end. Finally, the results showed that the identification of the crook index for alterations in posture turns out to be a technique currently used by most specialists. The great challenge is to develop portable devices through mobile applications that allow the detection of the corvo index and the barometric analysis, as well as for other types of applications that depend on visual analysis by experts.

Sign in / Sign up

Export Citation Format

Share Document