Analysis of the communication between colluding applications on modern smartphones

Marforio, Claudio; Ritzdorf, Hubert; Francillon, Aurélien; Čapkun, Srđjan

doi:10.1145/2420950.2420958

Cited by 123 publications

(84 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…[27] describes a collusion scenario where a ContactManager and PasswordManager app use overt and covert channels to extract information through another app that acts like a generic weather app. In [28], the authors enumerate and evaluate the bandwidth of different overt and covert channels in real devices. Covert channels tested include: intent type enumeration, settings modification, thread and socket enumeration and free disk space among others, which were used also in [22].…”

Section: Related Workmentioning

confidence: 99%

Automated generation of colluding apps for experimental research

Blasco

2017

J Comput Virol Hack Tech

View full text Add to dashboard Cite

Colluding apps bypass the security measures enforced by sandboxed operating systems such as Android. App collusion can be a real threat in cloud environments as well. Research in detecting and protecting against app collusion requires a variety of colluding apps for experimentation. Presently the number of (real or manually crafted) apps available to researchers is very limited. In this paper we propose a system called Application Collusion Engine (ACE) to automatically generate combinations of colluding and noncolluding Android apps to help researchers fairly evaluate different collusion detection and protection methods. Our initial implementation includes a variety of components that enable the system to create more than 5,000 different colluding and non-colluding app sets. ACE can be extended with more functional components to create even more colluding apps. To show the usefulness of our system, we have applied different risk evaluation and collusion detection methods to the created set of colluding apps.

show abstract

Section: Related Workmentioning

confidence: 99%

Automated generation of colluding apps for experimental research

Blasco

2017

J Comput Virol Hack Tech

View full text Add to dashboard Cite

show abstract

“…The notion of collusion has recently been discussed in many research papers. A practical demonstration of collusion attacks through covert channels can be found in [2,6]. Authors analyse free apps from the Android market and show that app collusion is a real threat.…”

Section: Related Workmentioning

confidence: 99%

Towards a threat assessment framework for apps collusion

2017

View full text Add to dashboard Cite

App collusion refers to two or more apps working together to achieve a malicious goal that they otherwise would not be able to achieve individually. The permissions based security model of Android does not address this threat as it is rather limited to mitigating risks of individual apps. This paper presents a technique for quantifying the collusion threat, essentially the first step towards assessing the collusion risk. The proposed method is useful in finding the collusion candidate of interest which is critical given the high volume of Android apps available. We present our empirical analysis using a classified corpus of over 29,000 Android apps provided by Intel Security TM .

show abstract

“…XOR P 1 with the key's first 32-bits, XOR P 2 with its second 32-bits, and so on upto P 14 . This process or cycle repeated until the entire P-array has been XOR-ed with key bits.…”

Section:  Generating Subkeysmentioning

confidence: 99%

Defacement of Colluding Attack Using Blowfish Algorithm

Jain¹,

Singh²,

Tomar³

2017

IJET

View full text Add to dashboard Cite

-In web environment, browser extension extends its functionality by retrieving, presenting and traversing the information through web browser. Browser extensions run with 'high' privileges which consequences, vulnerable web browser extensions to steal user's credentials and trap users into leaking sensitive information to unauthorized parties. One of the attack known as Colluding browser extension attack causes privacy leakage of share data in web browser through extensions. This paper, proposed Defacement of colluding Attack (DCA) mechanism to secure user credentials and confidential information over web browser extension. DCA mechanism encapsulate padding with blowfish algorithm to encrypt sensitive information before sharing it over common memory location. Finally the comparison evaluation of proposed mechanism is carried out with twofish, threefish, 3DES and DES on standard parameters such as encryption time, decryption time, key-length, throughput, attacks and level of security.

show abstract

Analysis of the communication between colluding applications on modern smartphones

Cited by 123 publications

References 19 publications

Automated generation of colluding apps for experimental research

Automated generation of colluding apps for experimental research

Towards a threat assessment framework for apps collusion

Defacement of Colluding Attack Using Blowfish Algorithm

Contact Info

Product

Resources

About