Tracking Explicit and Control Flows in Java and Native Android Apps Code

Mariem Graa; Nora Cuppens-Boulahia; Frédéric Cuppens; Jean-Louis Lanet

doi:10.5220/0005686603070316

Tracking Explicit and Control Flows in Java and Native Android Apps Code

Mariem Graa, Nora Cuppens-Boulahia, Frédéric Cuppens, Jean-Louis Lanet

2016

Abstract

The native app development is increased in Android systems to implement CPU-intensive applications such as game engines, signal processing, and physics simulation. However, native code analysis is very difficult and requires a lot of time which explains the limited number of systems that track information flow in native libraries. But, none of them detects the sensitive information leakage through control flows at native level. In this paper, we combine dynamic and static taint analysis to propagate taint along control dependencies. Our approach has proven to be effective in analyzing several malicious Android applications that invoke native librairies with reasonable performance overheads.

Download

Paper Citation

in Harvard Style

Graa M., Cuppens-Boulahia N., Cuppens F. and Lanet J. (2016). Tracking Explicit and Control Flows in Java and Native Android Apps Code . In Proceedings of the 2nd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-167-0, pages 307-316. DOI: 10.5220/0005686603070316

in Bibtex Style

@conference{icissp16,
author={Mariem Graa and Nora Cuppens-Boulahia and Frédéric Cuppens and Jean-Louis Lanet},
title={Tracking Explicit and Control Flows in Java and Native Android Apps Code},
booktitle={Proceedings of the 2nd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2016},
pages={307-316},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005686603070316},
isbn={978-989-758-167-0},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 2nd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Tracking Explicit and Control Flows in Java and Native Android Apps Code
SN - 978-989-758-167-0
AU - Graa M.
AU - Cuppens-Boulahia N.
AU - Cuppens F.
AU - Lanet J.
PY - 2016
SP - 307
EP - 316
DO - 10.5220/0005686603070316