Accession Number : AD1011052


Title :   DARKDROID: Exposing the Dark Side of Android Marketplaces


Descriptive Note : Technical Report,01 Jun 2012,01 Dec 2015


Corporate Author : University of California, Santa Barbara Santa Barbara United States


Personal Author(s) : Kruegel,Christopher ; Vigna,Giovanni ; Kirda,Engin ; Robertson,William


Full Text : https://apps.dtic.mil/dtic/tr/fulltext/u2/1011052.pdf


Report Date : 01 Jun 2016


Pagination or Media Count : 21


Abstract : Our DarkDroid project aims to protect Android devices from their many security threats. In DarkDoid, we developed novel approaches to Android security issues based on both static and dynamic analysis techniques to pinpoint a variety of malicious behaviors, including logic bombs, dynamically-loaded code, GUI-based deception attacks, DOS-related attacks, and evasive apps that use the complexity of the Android framework to disguise automatic analysis systems. Moreover, our approaches can detect apps containing both intentional and unintentional vulnerabilities, such as unsafe code loading mechanisms and misuse of crypto APIs. We also studied and discovered several weaknesses in Androids framework and permission system; and we explored the behavior and possibility of sandboxing an understudied, yet critical security aspect -- native code components in Android apps.


Descriptors :   MOBILE COMPUTING , COMPUTER NETWORK SECURITY , COMPUTER VIRUSES , VULNERABILITY , COMPUTER PROGRAMS , mobile operating systems , smart phones , computer program reliability , denial of service attack , graphical user interface , INTRUSION DETECTION (COMPUTERS) , malware


Distribution Statement : APPROVED FOR PUBLIC RELEASE