Nipdroid: An Enhanced Detection Mechanism for Android IPC

Chen Chen; Jia Xing Song; Wei Dong Liu

doi:10.4028/www.scientific.net/AMR.981.161

Paper Titles

Flatness Improvement of FRA with Multi-Wavelength Pump
p.141

Semantic Feature Modeling Based on the Decomposition of Feature Dependent Graph
p.149

Word Sense Disambiguation for Improving the Quality of Machine Translation
p.153

Word Sense Disambiguation Based on Center Window
p.157

Nipdroid: An Enhanced Detection Mechanism for Android IPC
p.161

A Novel XML Document Retrieval Method
p.167

Selecting Filter Range of Hybrid Brain-Computer Interfaces by Mutual Information
p.171

A New Quadtree-Based Skyline Query Algorithm
p.175

Research on Reusable Software Process Model Based on Petri Net
p.179

HomeAdvanced Materials ResearchAdvanced Materials Research Vol. 981Nipdroid: An Enhanced Detection Mechanism for...

Nipdroid: An Enhanced Detection Mechanism for Android IPC

Abstract:

As one of the most popular mobile operating system, Android has been troubled by privilege escalation attacks. This is because that the original Android ignores the inspection of transmitted data in intent. It only checks the permission of intent to determine whether the Inter-Process Communication (IPC) could continue. We developed Nipdroid to solve the mentioned defect in Android IPC detection. Nipdroid is based on the technology of marking and tracking sensitive data. After the original Android detection, Nipdroid extracts the sensitive tags from intent, and matches them with the permission lists of both communication apps, and then checks whether there is unreasonable data transmission in IPC. Experiments show that Nipdroid is effective on both preventing privilege escalation attacks and protecting user's sensitive data.

You might also be interested in these eBooks

View Preview

Info:

Periodical:

Advanced Materials Research (Volume 981)

Pages:

161-166

DOI:

https://doi.org/10.4028/www.scientific.net/AMR.981.161

Citation:

Cite this paper

Online since:

July 2014

Authors:

Chen Chen*, Jia Xing Song, Wei Dong Liu

Keywords:

Android, Enhanced Detection, IPC

Export:

RIS, BibTeX

Price:

Permissions CCC:

Request Permissions

Permissions PLS:

Request Permissions

Сopyright:

Citation:

* - Corresponding Author

References

[1] W. Enck, P. Gilbert, B.G. Chun, L.P. Cox, J. Jung, P. McDaniel and A.N. Sheth. TaintDroid: An information-flow tracking system for realtime privacy monitoring on smartphones. In 9th USENIX Symposium on Operating Systems Design and Implementation (OSDI), (2010).

DOI: 10.1145/2619091

Google Scholar

[2] S. Bugiel, L. Davi, A. Dmitrienko, T. Fischer and A.R. Sadeghi. Xmandroid: A new android evolution to mitigate privilege escalation attacks[J]. Technische Universität Darmstadt, Technical Report TR-2011-04, (2011).

DOI: 10.1145/2046707.2093482

Google Scholar

[3] M. Dietz, S. Shekhar, Y. Pisetsky, A. Shu and D.S. Wallach. QUIRE: Lightweight Provenance for Smart Phone Operating Systems[C]/USENIX Security Symposium. (2011).

Google Scholar

[4] M. Nauman, S. Khan and X. Zhang. Apex: extending android permission model and enforcement with user-defined runtime constraints[C]/Proceedings of the 5th ACM Symposium on Information, Computer and Communications Security. ACM, 2010: 328-332.

DOI: 10.1145/1755688.1755732

Google Scholar

[5] E. Chin, A.P. Felt, K. Greenwood and D. Wagner. Analyzing inter application communication in Android. In 9th Annual International Conference on Mobile Systems, Applications, and Services (MobiSys), (2011).

DOI: 10.1145/1999995.2000018

Google Scholar

[6] A.P. Fuchs, A. Chaudhuri and J.S. Foster. SCanDroid: Automated security certication of Android applications. Technical report, University of Maryland, (2009).

Google Scholar

[7] M. Ongtang, S. McLaughlin, W. Enck and P. McDaniel. Semantically rich application‐centric security in Android[J]. Security and Communication Networks, 2012, 5(6): 658-673.

DOI: 10.1002/sec.360

Google Scholar

[8] Information on Google Android. http: /www. android. com.

Google Scholar