Mining Permission Request Patterns from Android and Facebook Applications

Frank, Mario; Dong, Ben; Felt, Adrienne Porter; Song, Dawn

doi:10.1109/icdm.2012.86

Cited by 79 publications

(57 citation statements)

References 13 publications

(17 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…One of their key observations is that the set of dangerous-level permissions always outnumbers other permission types in all versions of the Android platform and it is still growing. Frank et al studied the permission request patterns of Android apps using pattern mining technique [22]. They tried to relate the permission request pattern with the app's reputation which can be served as an indicator of app quality.…”

Section: Related Workmentioning

confidence: 99%

Quantitative Security Risk Assessment of Android Permissions and Applications

Wang

Zheng

Sun

et al. 2013

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. The booming of the Android platform in recent years has attracted the attention of malware developers. However, the permissionsbased model used in Android system to prevent the spread of malware, has shown to be ineffective. In this paper, we propose DroidRisk, a framework for quantitative security risk assessment of both Android permissions and applications (apps) based on permission request patterns from benign apps and malware, which aims to improve the efficiency of Android permission system. Two data sets with 27,274 benign apps from Google Play and 1,260 Android malware samples were used to evaluate the effectiveness of DroidRisk. The results demonstrate that DroidRisk can generate more reliable risk signal for warning the potential malicious activities compared with existing methods. We show that DroidRisk can also be used to alleviate the overprivilege problem and improve the user attention to the risks of Android permissions and apps.

show abstract

Section: Related Workmentioning

confidence: 99%

Quantitative Security Risk Assessment of Android Permissions and Applications

Wang

Zheng

Sun

et al. 2013

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…Chia et al showed that community ratings are not reliable and that most applications request more permissions than needed [2]. Frank et al extended this work, showing that Facebook permissions follow a predefined pattern and that malicious applications deviate from it [4]. Finally, Xia et al…”

Section: Related Researchmentioning

confidence: 87%

“…We then automate the process of application installation based on the Selenium WebDriver. 4 In particular, using several different Facebook accounts with distinctly different user profiles, we install and accept the requested permissions for each of the 997 applications. To monitor the application behavior, we use a modified version of a Firefox plug-in [7], allowing us to record all the HTTP and HTTPS traffic.…”

Section: Methodsmentioning

confidence: 99%

A Closer Look at Third-Party OSN Applications: Are They Leaking Your Personal Information?

Chaabane

Yuan

Dey

et al. 2014

Passive and Active Measurement

View full text Add to dashboard Cite

Abstract. We examine third-party Online Social Network (OSN) applications for two major OSNs: Facebook and RenRen. These third-party applications typically gather, from the OSN, user personal information. We develop a measurement platform to study the interaction between OSN applications and fourth parties. We use this platform to study the behavior of 997 Facebook applications and 377 RenRen applications. We find that the Facebook and RenRen applications interact with hundreds of different fourth-party tracking entities. More worrisome, 22% of Facebook applications and 69% of RenRen applications provide users' personal information to one or more fourth-party tracking entities.

show abstract

“…A concern with these approaches is false positives stemming from the coarse-grained nature of permissions and the highly common nature of benign apps to over-claim their set of required permissions. Mario et al [24] presented their studies of permission request patterns of Android and Facebook applications.…”

Section: Evaluation Resultsmentioning

confidence: 99%

DroidMiner: Automated Mining and Characterization of Fine-grained Malicious Behaviors in Android Applications

Yang

et al. 2014

Lecture Notes in Computer Science

171

120

View full text Add to dashboard Cite

Most existing malicious Android app detection approaches rely on manually selected detection heuristics, features, and models. In this paper, we describe a new, complementary system, called DroidMiner, which uses static analysis to automatically mine malicious program logic from known Android malware, abstracts this logic into a sequence of threat modalities, and then seeks out these threat modality patterns in other unknown (or newly published) Android apps. We formalize a two-level behavioral graph representation used to capture Android app program logic, and design new techniques to identify and label elements of the graph that capture malicious behavioral patterns (or malicious modalities). After the automatic learning of these malicious behavioral models, DroidMiner can scan a new Android app to (i) determine whether it contains malicious modalities, (ii) diagnose the malware family to which it is most closely associated, (iii) and provide further evidence as to why the app is considered to be malicious by including a concise description of identified malicious behaviors. We evaluate DroidMiner using 2,466 malicious apps, identified from a corpus of over 67,000 third-party market Android apps, plus an additional set of over 10,000 official market Android apps. Using this set of real-world apps, we demonstrate that DroidMiner achieves a 95.3% detection rate, with only a 0.4% false positive rate. We further evaluate DroidMiner's ability to classify malicious apps under their proper family labels, and measure its label accuracy at 92%.

show abstract

Mining Permission Request Patterns from Android and Facebook Applications

Cited by 79 publications

References 13 publications

Quantitative Security Risk Assessment of Android Permissions and Applications

Quantitative Security Risk Assessment of Android Permissions and Applications

A Closer Look at Third-Party OSN Applications: Are They Leaking Your Personal Information?

DroidMiner: Automated Mining and Characterization of Fine-grained Malicious Behaviors in Android Applications

Contact Info

Product

Resources

About