Accession Number : AD1011052

Title :   DARKDROID: Exposing the Dark Side of Android Marketplaces

Descriptive Note : Technical Report,01 Jun 2012,01 Dec 2015

Corporate Author : University of California, Santa Barbara Santa Barbara United States

Personal Author(s) : Kruegel,Christopher ; Vigna,Giovanni ; Kirda,Engin ; Robertson,William

Full Text :

Report Date : 01 Jun 2016

Pagination or Media Count : 21

Abstract : Our DarkDroid project aims to protect Android devices from their many security threats. In DarkDoid, we developed novel approaches to Android security issues based on both static and dynamic analysis techniques to pinpoint a variety of malicious behaviors, including logic bombs, dynamically-loaded code, GUI-based deception attacks, DOS-related attacks, and evasive apps that use the complexity of the Android framework to disguise automatic analysis systems. Moreover, our approaches can detect apps containing both intentional and unintentional vulnerabilities, such as unsafe code loading mechanisms and misuse of crypto APIs. We also studied and discovered several weaknesses in Androids framework and permission system; and we explored the behavior and possibility of sandboxing an understudied, yet critical security aspect -- native code components in Android apps.

Descriptors :   MOBILE COMPUTING , COMPUTER NETWORK SECURITY , COMPUTER VIRUSES , VULNERABILITY , COMPUTER PROGRAMS , mobile operating systems , smart phones , computer program reliability , denial of service attack , graphical user interface , INTRUSION DETECTION (COMPUTERS) , malware

Distribution Statement : APPROVED FOR PUBLIC RELEASE