Title :
Android´s sensitive data leakage detection based on API monitoring
Author :
Meng Shanshan ; Yang Xiaohui ; Song Yubo ; Zhu Kelong ; Chen Fei
Author_Institution :
Res. Center of Inf. Security, Southeast Univ., Nanjing, China
Abstract :
Due to the openness of Android, more and more malware has exploded, and constitutes a huge security threat to Android-based smartphones. This paper proposes a mechanism to study sensitive data leakage by analyzing sensitive APIs, decompiles Android APK to get smali files, and defines a sensitive API library related to user privacy. Then, analyzes the potential threats by detecting the sensitive API in the source code, and determines whether there is a sensitive data leakage. We analyzed 20 applications with the help of the mechanism, and in the paper we present one detailed analysis process.
Keywords :
application program interfaces; data privacy; invasive software; mobile computing; smart phones; source code (software); API monitoring; Android APK; Android-based smartphone; android sensitive data leakage detection; malware; potential threat analysis; security threat; sensitive API library; smali files; source code; user privacy; android; decompile; sensitive API; smali;
Conference_Titel :
Cyberspace Technology (CCT 2014), International Conference on
Print_ISBN :
978-1-84919-928-5
DOI :
10.1049/cp.2014.1340
