Tainting-Assisted and Context-Migrated Symbolic Execution of Android Framework for Vulnerability Discovery and Exploit Generation

Luo Lannan; Zeng Qiang; Cao Chen; Chen Kai; Liu Jian; Liu Limin; Gao Neng; Yang Min; Xing Xinyu; Liu Peng

首页> 外文期刊>IEEE transactions on mobile computing >Tainting-Assisted and Context-Migrated Symbolic Execution of Android Framework for Vulnerability Discovery and Exploit Generation

【24h】

Tainting-Assisted and Context-Migrated Symbolic Execution of Android Framework for Vulnerability Discovery and Exploit Generation

机译：禁止辅助和上下文迁移的Android框架易受攻击和漏洞生成的象征性

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Android Application Framework is an integral and foundational part of the Android system. Each of the two billion (as of 2017) Android devices relies on the systemservices of Android Framework to manage applications and system resources. Given its critical role, a vulnerability in the framework can be exploited to launch large-scale cyber attacks and cause severe harms to user security and privacy. Recently, many vulnerabilities in Android Framework were exposed, showing that it is indeed vulnerable and exploitable. While there is a large body of studies on Android application analysis, research on Android Framework analysis is very limited. In particular, to our knowledge, there is no prior work that investigates how to enable symbolic execution of the framework, an approach that has proven to be very powerful for vulnerability discovery and exploit generation. We design and build the first system, CENTAUR, that enables symbolic execution of Android Framework. Due to the middleware nature and technical peculiarities of the framework that impinge on the analysis, many unique challenges arise and are addressed in CENTAUR. The systemhas been applied to discovering new vulnerability instances, which can be exploited by recently uncovered attacks against the framework, and to generating PoC exploits.

机译：Android应用程序框架是Android系统的一个积分和基础部分。每次20亿（截至2017年）Android设备依赖于Android框架的SystemService来管理应用程序和系统资源。鉴于其关键作用，可以利用框架中的漏洞来启动大规模的网络攻击，并对用户安全性和隐私造成严重危害。最近，许多漏洞在Android框架中被暴露，表明它确实易受攻击和利用。虽然有一个大型的Android应用分析研究，但有关Android框架分析的研究非常有限。特别是我们的知识，没有先前的工作，调查如何启用框架的象征性，这是一种证明对于漏洞发现和利用生成非常强大的方法。我们设计并构建第一个系统，中心，即支持Android框架的象征性。由于框架的中间件性质和技术特性，在分析中受到影响，因此出现了许多独特的挑战，并以中心为中心解决。系统已应用于发现新的漏洞实例，这些情况可以通过最近发现对框架的攻击以及生成POC漏洞来利用。

著录项

来源
《IEEE transactions on mobile computing》 |2020年第12期|2946-2964|共19页
作者
Luo Lannan; Zeng Qiang; Cao Chen; Chen Kai; Liu Jian; Liu Limin; Gao Neng; Yang Min; Xing Xinyu; Liu Peng;
展开▼
作者单位

Univ South Carolina Dept Comp Sci & Engn Columbia SC 29208 USA;

Univ South Carolina Dept Comp Sci & Engn Columbia SC 29208 USA;

Penn State Univ Coll Informat Sci & Technol University Pk PA 16802 USA;

Chinese Acad Sci Inst Informat Engn Beijing 100012 Peoples R China|Univ Chinese Acad Sci Sch Cyber Secur Beijing 100049 Peoples R China;

Chinese Acad Sci Inst Informat Engn Beijing 100012 Peoples R China|Univ Chinese Acad Sci Sch Cyber Secur Beijing 100049 Peoples R China;

Chinese Acad Sci Inst Informat Engn Beijing 100012 Peoples R China|Univ Chinese Acad Sci Sch Cyber Secur Beijing 100049 Peoples R China;

Chinese Acad Sci Inst Informat Engn Beijing 100012 Peoples R China|Univ Chinese Acad Sci Sch Cyber Secur Beijing 100049 Peoples R China;

Fudan Univ Sch Comp Sci Shanghai 200433 Peoples R China;

Penn State Univ Coll Informat Sci & Technol University Pk PA 16802 USA;

Penn State Univ Coll Informat Sci & Technol University Pk PA 16802 USA;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Symbolic execution; concolic execution; vulnerability discovery; exploit generation; android framework;

机译：象征性执行;Concolic执行;漏洞发现;利用一代;Android框架;

相似文献

外文文献
中文文献
专利

1. VAnDroid: A framework for vulnerability analysis of Android applications using a model-driven reverse engineering technique [J] . Nirumand Atefeh, Zamani Bahman, Ladani Behrouz Tork Software . 2019,第1期

机译：VAnDroid：使用模型驱动的逆向工程技术对Android应用程序进行漏洞分析的框架
2. SEEP: Exploiting Symbolic Execution for Energy-Aware Programming [J] . Timo Honig, Christopher Eibel, Rudiger Kapitza, Operating systems review . 2011,第3期

机译：SEEP：利用符号执行进行能源意识编程
3. Complexity vulnerability analysis using symbolic execution [J] . Luckow Kasper, Kersten Rody, Pasareanu Corina Software Testing, Verification and Reliability . 2020,第7a8期

机译：使用符号执行复杂性漏洞分析
4. StatSym: Vulnerable Path Discovery through Statistics-Guided Symbolic Execution [C] . Fan Yao, Yongbo Li, Yurong Chen, Annual IEEE/IFIP International Conference on Dependable Systems and Networks . 2017

机译：StatSym：通过统计指导的符号执行进行脆弱路径发现
5. Framework synthesis for symbolic execution of event-driven frameworks. [D] . Jeon, Jinseong. 2016

机译：框架综合，用于事件驱动框架的符号执行。
6. A model-guided symbolic execution approach for network protocol implementations and vulnerability detection [O] . Shameng Wen, Qingkun Meng, Chao Feng, 2011

机译：用于网络协议实现和漏洞检测的模型指导的符号执行方法
7. Checking Interaction-Based Declassification Policies for Android Using Symbolic Execution [O] . Micinski, Kristopher, Fetter-Degges, Jonathan, Jeon, Jinseong, 2015

机译：使用符号执行检查基于Android的基于交互的解密策略

Tainting-Assisted and Context-Migrated Symbolic Execution of Android Framework for Vulnerability Discovery and Exploit Generation

摘要

著录项

相似文献

相关主题

期刊订阅