Android Apps:Static Analysis Based on Permission Classification

被引：3

作者：

Zhenjiang Dong ^{[1
]}

Hui Ye ^{[2
]}

Yan Wu ^{[1
]}

Shaoyin Cheng ^{[2
]}

Fan Jiang ^{[2
]}

机构：

[1] ZTE Corporation

[2] Information Technology Security Evaluation Center,University of Science and Technology of China

来源：

ZTECommunications | 2013年 / 11卷 / 01期

基金：

中央高校基本科研业务费专项资金资助; 高等学校博士学科点专项科研基金;

关键词：

malware; software analysis; static analysis; Android;

D O I：

暂无

中图分类号：

TN929.5 [移动通信]; TP309 [安全保密];

学科分类号：

081201 ; 0839 ; 1402 ;

摘要：

Android has a strict permission management mechanism. Any applications that try to run on the Android system need to obtain permission. In this paper, we propose an efficient method of detecting malicious applications in the Android system. First, hundreds of permissions are classified into different groups. The application programming interfaces (APIs) associated with permissions that can interact with the outside environment are called sink functions. The APIs associated with other permissions are called taint functions. e construct association tables for block variables and function variables of each application. Malicious applications can then be detected by using the static taint-propagation method to analyze these tables.

引用

页码：62 / 66

页数：5

共 50 条

[41] AC-Net: Assessing the Consistency of Description and Permission in Android Apps
Feng, Yinglan
Chen, Liang
Zheng, Angyu
Gao, Cuiyun
Zheng, Zibin
IEEE ACCESS, 2019, 7 : 57829 - 57842
[42] Classification and security assessment of android apps
Caushaj E.
Sugumaran V.
Discover Internet of Things, 2023, 3 (01):
[43] Static Extraction of IFML Models for Android Apps
Huang, An
Pan, Minxue
Zhang, Tian
Li, Xuandong
21ST ACM/IEEE INTERNATIONAL CONFERENCE ON MODEL DRIVEN ENGINEERING LANGUAGES AND SYSTEMS: COMPANION PROCEEDINGS (MODELS-COMPANION '18), 2018, : 52 - 53
[44] Static analysis framework for permission-based dataset generation and android malware detection using machine learning
Pathak, Amarjyoti
Kumar, Th. Shanta
Barman, Utpal
EURASIP JOURNAL ON INFORMATION SECURITY, 2024, 2024 (01):
[45] MUDROID: Android malware detection and classification based on permission and behavior for autonomous vehicles
Tang, Binhui
Da, Hai
Wang, Bochang
Wang, Junfeng
TRANSACTIONS ON EMERGING TELECOMMUNICATIONS TECHNOLOGIES, 2023, 34 (11)
[46] Fine-Grained In-Context Permission Classification for Android Apps using Control-Flow Graph Embedding
Malviya, Vikas K.
Tun, Yan Naing
Leow, Chee Wei
Xynyn, Ailys Tee
Shar, Lwin Khin
Jiang, Lingxiao
2023 38TH IEEE/ACM INTERNATIONAL CONFERENCE ON AUTOMATED SOFTWARE ENGINEERING, ASE, 2023, : 1225 - 1237
[47] Detecting Permission Over-claim of Android Applications with Static and Semantic Analysis Approach
Tang, Junwei
Li, Ruixuan
Han, Hongmu
Zhang, Heng
Gu, Xiwu
2017 16TH IEEE INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS / 11TH IEEE INTERNATIONAL CONFERENCE ON BIG DATA SCIENCE AND ENGINEERING / 14TH IEEE INTERNATIONAL CONFERENCE ON EMBEDDED SOFTWARE AND SYSTEMS, 2017, : 706 - 713
[48] Android application classification and anomaly detection with graph-based permission patterns
Sokolova, Karina
Perez, Charles
Lemercier, Marc
DECISION SUPPORT SYSTEMS, 2017, 93 : 62 - 76
[49] Android App Classification and Permission Usage Risk Assessment
Shen, Yidong
Xu, Ming
Zheng, Ning
Xu, Jian
Xia, Wenjing
Wu, Yiming
Qiao, Tong
Yang, Tao
COLLABORATIVE COMPUTING: NETWORKING, APPLICATIONS AND WORKSHARING, COLLABORATECOM 2017, 2018, 252 : 567 - 577
[50] Detecting Permission Crashes of Android Apps using Crawling and Revoke Operation Injections
Liu, Chien-Hung
Liu, Chen-Tzung
Li, Hsiu-Hao
2021 28TH ASIA-PACIFIC SOFTWARE ENGINEERING CONFERENCE WORKSHOPS (APSECW 2021), 2021, : 47 - 51

← 1 2 3 4 5 →