Protection against Code Obfuscation Attacks Based on Control Dependencies in Android Systems

机译：Android系统中基于控制依赖项的代码混淆攻击防护

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

In Android systems, an attacker can obfuscate an application code to leak sensitive information. TaintDroid is an information flow tracking system that protects private data in smartphones. But, TainDroid cannot detect control flows. Thus, it can be circumvented by an obfuscated code attack based on control dependencies. In this paper, we present a collection of obfuscated code attacks on TaintDroid system. We propose a technical solution based on a hybrid approach that combines static and dynamic analysis. We formally specify our solution based on two propagation rules. Finally, we evaluate our approach and show that we can avoid the obfuscated code attacks based on control dependencies by using these propagation rules.

机译：在Android系统中，攻击者可以混淆应用程序代码以泄漏敏感信息。 TaintDroid是一种信息流跟踪系统，可保护智能手机中的私人数据。但是，TainDroid无法检测控制流。因此，可以通过基于控件依赖项的混淆代码攻击来规避它。在本文中，我们提出了对TaintDroid系统的混淆代码攻击的集合。我们提出一种基于静态和动态分析相结合的混合方法的技术解决方案。我们基于两个传播规则正式指定我们的解决方案。最后，我们评估了我们的方法，并表明我们可以通过使用这些传播规则来避免基于控件依赖性的混淆代码攻击。

著录项

来源
《The Eighth International Conference on Software Security and Reliability - Companion》|2014年|149-157|共9页
会议地点 San Francisco CA(US)
作者
Graa Mariem; Boulahia Nora Cuppens; Cuppens Frederic; Cavalliy Ana;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Android system; Code obfuscation attacks; Control dependencies; Information flow tracking; Leakage of sensitive information; Propagation rules;

机译：Android系统；代码混淆攻击；控制依赖项；信息流跟踪；泄露敏感信息；传播规则；;

相似文献

外文文献
中文文献
专利

1. A Deep Camouflage: Evaluating Android’s Anti‑malware Systems Robustness Against Hybridization of Obfuscation Techniques with Injection Attacks [J] . Bakour Khaled, Unver Halil Murat, Ghanem Razan Arabian Journal for Science and Engineering . 2019,第11期

机译：深层伪装：评估Android的反恶意软件系统对注入式攻击与混淆技术混合的鲁棒性
2. DexDefender: A DEX Protection Scheme to Withstand Memory Dump Attack Based on Android Platform [J] . RONG Yu, LIU Yiyi, LI Hui, 中兴通讯技术（英文版） . 2018,第003期

机译：DexDefender：基于Android平台的DEX保护方案，可抵御内存转储攻击
3. Timing attack on NoC-based systems: Prime plus Probe attack and NoC-based protection [J] . Reinbrecht Cezar, Susin Altamiro, Bossuet Lilian, Microprocessors and microsystems . 2017,第jula期

机译：基于NoC的系统上的定时攻击：Prime plus Probe攻击和基于NoC的保护
4. Protection against Code Obfuscation Attacks Based on Control Dependencies in Android Systems [C] . Graa Mariem, Boulahia Nora Cuppens, Cuppens Frederic, International Conference on Software Security and Reliability - Companion . 2014

机译：基于控制依赖性的Code Obfuscation攻击在Android系统中保护
5. Self-Protection of Android Systems from Inter-Component Communication Attacks [D] . Hammad, Mahmoud M. 2018

机译：组件间通信攻击对Android系统的自我保护
6. Observer-Based Event-Triggered Predictive Control for Networked Control Systems under DoS Attacks [O] . Weifan Lu, Xiuxia Yin, Yichuan Fu, 2020

机译：基于观察者的事件触发了DOS攻击下的网络控制系统的预测控制
7. Protection against Code Obfuscation Attacks based on control dependencies in Android Systems [O] . Mariem Graa, Ana Cavalli 2015

机译：防止代码混淆攻击基于android系统中的控制依赖性

Protection against Code Obfuscation Attacks Based on Control Dependencies in Android Systems

摘要

著录项

相似文献

相关主题

期刊订阅