What's in Your Dongle and Bank Account? Mandatory and Discretionary Protection of Android External Resources

Demetriou, Soteris; Zhou, Xiaoyong; Naveed, Muhammad; Lee, Yeonjoon; Yuan, Kan; Gunter, Carl A.

doi:10.14722/ndss.2015.23098

Cited by 9 publications

(13 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Abusing permission: malicious app logic abuses the privilege granted to the app [39], [31], [51] Exploiting weakness of general system design: generic system mechanisms such as IPC [63], [23] Exploiting weakness of platform specific features: techniques specific to platform, e.g., native code [19], [20], [49], [47] Exploiting system vulnerability: security flaws and bugs in the system e.g., root exploits [59], [71], [43], [65], [18] N/A Shadow payload: disguise malicious payload using obfuscation or encryption techniques [74], [55] Side channel: carry out malicious payload using covert channel [32], [70], [72], [29] Malicious payload…”

Section: ) Installationmentioning

confidence: 99%

“…Remote control: Taking control of user's device with C&C servers [74], [46] Spyware: Aiming to gather information from the victims without their knowledge [39], [31], [51], [72], [48] Adware: Downloading and displaying unwanted ads on the user's device [58], [46], [42] Ransomware: Installed covertly to DoS the device and demands a ransom payment to restore it [45], [43] Privilege escalation: Exploiting a bug or design flaw of the system to gain elevated access [59], [65], [73], [47] N/A to achieve maximum benefit; (2) evade detection to prolong their life-time. Guided by these principles various adversary techniques are used that we categorize into 6 classes shown in Table II.…”

Section: ) Installationmentioning

confidence: 99%

See 1 more Smart Citation

ContexIoT: Towards Providing Contextual Integrity to Appified IoT Platforms

Jia

Chen

Wang

et al. 2017

Proceedings 2017 Network and Distributed System Security Symposium

190

127

View full text Add to dashboard Cite

The Internet-of-Things (IoT) has quickly evolved to a new appified era where third-party developers can write apps for IoT platforms using programming frameworks. Like other appified platforms, e.g., the smartphone platform, the permission system plays an important role in platform security. However, design flaws in current IoT platform permission models have been reported recently, exposing users to significant harm such as break-ins and theft. To solve these problems, a new access control model is needed for both current and future IoT platforms. In this paper, we propose ContexIoT, a context-based permission system for appified IoT platforms that provides contextual integrity by supporting fine-grained context identification for sensitive actions, and runtime prompts with rich context information to help users perform effective access control. Context definition in ContexIoT is at the inter-procedure control and data flow levels, that we show to be more comprehensive than previous context-based permission systems for the smartphone platform. ContexIoT is designed to be backward compatible and thus can be directly adopted by current IoT platforms. We prototype ContexIoT on the Samsung SmartThings platform, with an automatic app patching mechanism developed to support unmodified commodity SmartThings apps. To evaluate the system's effectiveness, we perform the first extensive study of possible attacks on appified IoT platforms by reproducing reported IoT attacks and constructing new IoT attacks based on smartphone malware classes. We categorize these attacks based on lifecycle and adversary techniques, and build the first taxonomized IoT attack app dataset. Evaluating ContexIoT on this dataset, we find that it can effectively distinguish the attack context for all the tested apps. The performance evaluation on 283 commodity IoT apps shows that the app patching adds nearly negligible delay to the event triggering latency, and the permission request frequency is far below the threshold that is considered to risk user habituation or annoyance. Permission to freely reproduce all or part of this paper for noncommercial purposes is granted provided that copies bear this notice and the full citation on the first page. Reproduction for commercial purposes is strictly prohibited without the prior written consent of the Internet Society, the first-named author (for reproduction of an entire paper only), and the author's employer if the paper was prepared within the scope of employment.

show abstract

Section: ) Installationmentioning

confidence: 99%

Section: ) Installationmentioning

confidence: 99%

ContexIoT: Towards Providing Contextual Integrity to Appified IoT Platforms

Jia

Chen

Wang

et al. 2017

Proceedings 2017 Network and Distributed System Security Symposium

190

127

View full text Add to dashboard Cite

show abstract

“…Previous work highlighted the problems existing in Android device-to-device communications [11,20]. In particular, Demetriou et al [11] studied several channels of communication in Android (such as Bluetooth, SMS, Internet and audio) showing that the security model of Android does not offer adequate measures for protecting certain secrets. To address this problem, they build a security system, called SEACAT, to enforce fine-grained protection on the above resources.…”

Section: Related Workmentioning

confidence: 99%

“…Several solutions exist for securing cross-device communication. In the Android environment, they allow authentication of devices and communication channels [11,20]. However, these solutions are not sufficient to protect the entire communication flow.…”

Section: Introductionmentioning

confidence: 99%

“…However, these solutions are not sufficient to protect the entire communication flow. Specifically, the proposed protection system in [11] restricts apps' access to external resources, such as Bluetooth, SMS and NFC, by defining new SEAndroid types to represent the resources based upon their identities observed from their channels. The policies bind an app to a particular device on a specific channel.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Detecting (absent) app-to-app authentication on cross-device short-distance channels

Cristalli

Bruschi

et al. 2019

Proceedings of the 35th Annual Computer Security Applications Conference

View full text Add to dashboard Cite

Short-distance or near-field communication is increasingly used by mobile apps for interacting or exchanging data in a cross-device fashion. In this paper, we identify a security issue, namely crossdevice app-to-app communication hijacking (or CATCH), that affect Android apps using short-distance channels (e.g., Bluetooth and Wi-Fi-Direct). This issue causes unauthenticated or malicious appto-app interactions even when the underlying communication channels are authenticated and secured. In addition to discovering the security issue, we design an algorithm based on data-flow analysis for detecting the presence of CATCH in Android apps. Our algorithm checks if a given app contains an app-to-app authentication scheme, necessary for preventing CATCH. We perform experiments on a set of Android apps and show the CATCH problem is always present on the whole analyzed applications set. We also discuss the impact of the problem in real scenarios by presenting two real case studies. At the end of the paper we reported limitations of our model along with future improvements. CCS CONCEPTS • Security and privacy → Authentication; Mobile and wireless security; Software and application security.

show abstract