AppHolmes: Detecting and Characterizing App Collusion among Third-Party Android Markets
نویسندگان
چکیده
Background activities on smartphones are essential to today’s “always-on” mobile device experience. Yet, there lacks a clear understanding of the cooperative behaviors among background activities as well as a quantification of the consequences. In this paper, we present the first in-depth study of app collusion, in which one app surreptitiously launches others in the background without user’s awareness. To enable the study, we develop AppHolmes, a static analysis tool for detecting app collusion by examining the app binaries. By analyzing 10,000 apps from top third-party app markets, we found that i) covert, cooperative behaviors in background app launch are surprisingly pervasive, ii) most collusion is caused by shared services, libraries, or common interest among apps, and iii) collusion has serious impact on performance, efficiency, and security. Overall, our work presents a strong implication on future mobile system design.
منابع مشابه
Android Inter-App Communication Threats, Solutions, and Challenges
Researchers and commercial companies have made a lot of efforts on detecting malware in Android platform. However, a recent malware threat, App collusion, makes malware detection challenging. In App collusion, two or more Apps collaborate to perform malicious actions by communicating with each other, which makes single App analysis insufficient. In this paper, we first introduce Android securit...
متن کاملOn the Need of Precise Inter-App ICC Classification for Detecting Android Malware Collusions*
Malware collusion is a new threat against Android application security. It refers to the scenario where two or more applications interact with each other to perform malicious tasks. Most existing solutions assume the attack model of a standalone malicious application, and thus cannot detect collusion. The objective of this position paper is to point out the need for practical solutions for dete...
متن کاملConsolidated Review of Rise of the Planet of the Apps: A Systematic Study of the Mobile App Ecosystem
3. Comments The paper is very well presented and structured. It consists of an analysis of four third-party app markets for Android. I like the fact that the paper does not only describe the analytical results and the graphs but goes in depth in trying to find reasons for the exhibited behavior, it creates metrics and models to explain and frame these characteristics and has nice discussion sec...
متن کاملProduct Labels for Mobile Application Markets
Mobile application markets thrive, yet they are held back from their full potential by the information asymmetry between application developers and application consumers. A consumer has no way to gauge the security or reliability of an application, and a developer has no way to differentiate his application from that of the competition based on these factors. We argue that the centralized natur...
متن کاملJuxtapp and DStruct: Detection of Similarity Among Android Applications
In recent years, we have witnessed an incredible growth in the adoption of smartphones, which has been accompanied by an influx of applications. Users can purchase or download applications for free onto their mobile phones from centralized application markets such as Google’s Android Market and Amazon’s third party market. Despite the rapidly increasing volume of applications available on the m...
متن کامل