Detecting sensitive data leakage via inter-applications on Android using a hybrid analysis technique

HIEN DO

13:44 26/06/2018

In this study, we present the uitHyDroid system, which allows the detection of sensitive data leakage via multi-applications using hybrid analysis. uitHyDroid uses static analysis to collect user interface elements that must interact to illuminate possible sensitive data flows. In addition, dynamic analysis is used to capture inter-application communications to link partial sensitive data flows from static analysis. This approach is faster than using only dynamic analysis. In this study, we use hooking technology to conduct dynamic analysis phase emulator modification. The experimental results show that the proposed system can detect most sensitive data leakages for both our dataset and real-world applications.

TIN LIÊN QUAN

PoFQ: A Blockchain Consensus Protocol for Decentralized Federated Learning-Based Threat Hunting Approach in a Trustless Computing Landscape

An empirical review of the effectiveness of different language processing approaches in Software Code Vulnerability Detection

The advancement of software vulnerability detection tools has accelerated in recent years, yet the prevalence and severity of vulnerabilities continue to escalate, posing significant threats to computer security and information safety. To address this, numerous detection methodologies have been proposed, with machine learning-based approaches demonstrating notable promise. In this paper,...

RAX-ClaMal: Dynamic Android malware classification based on RAX register values

Detecting malware on Android remains a major challenge because malicious apps use sophisticated evasion techniques. This study presents RAX-ClaMal, a novel approach leveraging dynamic analysis of RAX (Register a Extended) register values for Android malware detection. By extracting and examining the RAX register in the data sections from Dalvik Executable...