Detecting Colluding Inter-App Communication in Mobile Environment
The increase in computing capabilities of mobile devices has, in the last few years, made possible a plethora of complex operations performed from smartphones and tablets end users, for instance, from a bank transfer to the full management of home automation. Clearly, in this context, the detection...
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI AG
2020-11-01
|
| Series: | Applied Sciences |
| Subjects: | |
| Online Access: | https://www.mdpi.com/2076-3417/10/23/8351 |
| _version_ | 1827701551278325760 |
|---|---|
| author | Rosangela Casolare Fabio Martinelli Francesco Mercaldo Antonella Santone |
| author_facet | Rosangela Casolare Fabio Martinelli Francesco Mercaldo Antonella Santone |
| author_sort | Rosangela Casolare |
| collection | DOAJ |
| description | The increase in computing capabilities of mobile devices has, in the last few years, made possible a plethora of complex operations performed from smartphones and tablets end users, for instance, from a bank transfer to the full management of home automation. Clearly, in this context, the detection of malicious applications is a critical and challenging task, especially considering that the user is often totally unaware of the behavior of the applications installed on their device. In this paper, we propose a method to detect inter-app communication i.e., a colluding communication between different applications with data support to silently exfiltrate sensitive and private information. We based the proposed method on model checking, by representing Android applications in terms of automata and by proposing a set of logic properties to reduce the number of comparisons and a set of logic properties automatically generated for detecting colluding applications. We evaluated the proposed method on a set of 1092 Android applications, including different colluding attacks, by obtaining an accuracy of 1, showing the effectiveness of the proposed method. |
| first_indexed | 2024-03-10T14:36:21Z |
| format | Article |
| id | doaj.art-d80ab3ad88894f6f95ac808ebd111d86 |
| institution | Directory Open Access Journal |
| issn | 2076-3417 |
| language | English |
| last_indexed | 2024-03-10T14:36:21Z |
| publishDate | 2020-11-01 |
| publisher | MDPI AG |
| record_format | Article |
| series | Applied Sciences |
| spelling | doaj.art-d80ab3ad88894f6f95ac808ebd111d862023-11-20T22:11:48ZengMDPI AGApplied Sciences2076-34172020-11-011023835110.3390/app10238351Detecting Colluding Inter-App Communication in Mobile EnvironmentRosangela Casolare0Fabio Martinelli1Francesco Mercaldo2Antonella Santone3Department of Biosciences and Territory, University of Molise, 86090 Pesche, ItalyInstitute for Informatics and Telematics, National Research Council of Italy, 56124 Pisa, ItalyInstitute for Informatics and Telematics, National Research Council of Italy, 56124 Pisa, ItalyDepartment of Medicine and Health Sciences “Vincenzo Tiberio”, University of Molise, 86100 Campobasso, ItalyThe increase in computing capabilities of mobile devices has, in the last few years, made possible a plethora of complex operations performed from smartphones and tablets end users, for instance, from a bank transfer to the full management of home automation. Clearly, in this context, the detection of malicious applications is a critical and challenging task, especially considering that the user is often totally unaware of the behavior of the applications installed on their device. In this paper, we propose a method to detect inter-app communication i.e., a colluding communication between different applications with data support to silently exfiltrate sensitive and private information. We based the proposed method on model checking, by representing Android applications in terms of automata and by proposing a set of logic properties to reduce the number of comparisons and a set of logic properties automatically generated for detecting colluding applications. We evaluated the proposed method on a set of 1092 Android applications, including different colluding attacks, by obtaining an accuracy of 1, showing the effectiveness of the proposed method.https://www.mdpi.com/2076-3417/10/23/8351colludingmalwaremodel checkingformal methodssecurityAndroid |
| spellingShingle | Rosangela Casolare Fabio Martinelli Francesco Mercaldo Antonella Santone Detecting Colluding Inter-App Communication in Mobile Environment Applied Sciences colluding malware model checking formal methods security Android |
| title | Detecting Colluding Inter-App Communication in Mobile Environment |
| title_full | Detecting Colluding Inter-App Communication in Mobile Environment |
| title_fullStr | Detecting Colluding Inter-App Communication in Mobile Environment |
| title_full_unstemmed | Detecting Colluding Inter-App Communication in Mobile Environment |
| title_short | Detecting Colluding Inter-App Communication in Mobile Environment |
| title_sort | detecting colluding inter app communication in mobile environment |
| topic | colluding malware model checking formal methods security Android |
| url | https://www.mdpi.com/2076-3417/10/23/8351 |
| work_keys_str_mv | AT rosangelacasolare detectingcolludinginterappcommunicationinmobileenvironment AT fabiomartinelli detectingcolludinginterappcommunicationinmobileenvironment AT francescomercaldo detectingcolludinginterappcommunicationinmobileenvironment AT antonellasantone detectingcolludinginterappcommunicationinmobileenvironment |