Read e-book online Android Application Security: A Semantics and Context-Aware PDF

By Mu Zhang, Heng Yin

This SpringerBrief explains the rising cyber threats that undermine Android software safeguard. It extra explores the chance to leverage the state of the art semantics and context–aware innovations to shield opposed to such threats, together with zero-day Android malware, deep software program vulnerabilities, privateness breach and inadequate safety warnings in app descriptions. The authors start by way of introducing the history of the sphere, explaining the final working method, programming positive factors, and protection mechanisms. The authors seize the semantic-level habit of cellular purposes and use it to reliably observe malware versions and zero-day malware. subsequent, they suggest an automated patch new release strategy to discover and block harmful details circulate. A bytecode rewriting strategy is used to restrict privateness leakage. User-awareness, a key issue of protection hazards, is addressed by way of immediately translating security-related software semantics into normal language descriptions. common habit mining is used to find and compress universal semantics. consequently, the produced descriptions are security-sensitive, human-understandable and concise.By masking the heritage, present threats, and destiny paintings during this box, the short is acceptable for either execs in and advanced-level scholars operating in cellular safety and purposes. it really is useful for researchers, as well.

Show description

Read Online or Download Android Application Security: A Semantics and Context-Aware Approach PDF

Best network security books

Download PDF by Kevin Fletcher: Juniper Networks Secure Access SSL VPN Configuration Guide

Juniper Networks safe entry SSL VPN home equipment offer an entire variety of distant entry home equipment for the smallest businesses as much as the biggest carrier services. As a method administrator or defense specialist, this accomplished configuration advisor will let you configure those home equipment to permit distant and cellular entry for workers.

Android Application Security: A Semantics and Context-Aware by Mu Zhang, Heng Yin PDF

This SpringerBrief explains the rising cyber threats that undermine Android program safety. It additional explores the chance to leverage the state of the art semantics and context–aware options to protect opposed to such threats, together with zero-day Android malware, deep software program vulnerabilities, privateness breach and inadequate defense warnings in app descriptions.

Download e-book for iPad: Practical Information Security Management: A Complete Guide by Tony Campbell

Create applicable, security-focused enterprise propositions that reflect on the stability among expense, possibility, and usefulness, whereas beginning your trip to develop into a knowledge safeguard supervisor. overlaying a wealth of knowledge that explains precisely how the works this day, this publication makes a speciality of how one can arrange a good info defense perform, lease the fitting humans, and strike the easiest stability among defense controls, expenses, and dangers.

Additional resources for Android Application Security: A Semantics and Context-Aware Approach

Example text

Some patches can be as simple as placing a permission validation at the entry point of an exposed interface (to defeat privilege escalation [1] and permission © The Author(s) 2016 M. Zhang, H. 1007/978-3-319-47812-8_4 45 46 4 Automatic Generation of Vulnerability-Specific Patches for Preventing. . re-delegation [3] attacks), or withholding the public access to the internal data repositories (to defend against content leaks and pollution [4]), the fixes to the other problems may not be so straightforward.

The key of our patch generation technique is to place minimally required code into the vulnerable program to accurately keep track of dangerous information originated from the exposed interfaces and effectively block the attack at the security-sensitive APIs. To achieve this goal, we first perform static bytecode analysis to identify small but complete program slices that lead to the discovered vulnerability. Then we devise several shadowing mechanisms to insert new variables and instructions along the program slices, for the purpose of keeping track of dangerous information at runtime.

Moreover, with more and more apps being fed into the 3 Semantics-Aware Android Malware Classification Number of Unique Graphs 38 12000 10000 8000 6000 4000 2000 0 3000 4000 5000 6000 7000 8000 9000 10000 11000 Number of Benign Apps Fig. 12 Convergence of unique graphs in benign apps benign database, the database size grows slower and slower. 12 depicts our discovery. When the number of apps increases from 3000 to 4000, there is a sharp increase (2087) of unique graphs. However, when the number of apps grows from 10,000 to 11,000, only 220 new, unique graphs are generated, and the curve begins to flatten.

Download PDF sample

Rated 4.66 of 5 – based on 25 votes