Improving Smartphone Security and Reliability
Document Type
Article
Publication Date
3-1-2017
Abstract
Users are increasingly relying on smartphones, hence concerns such as mobile app security, privacy, and correctness have become increasingly pressing. Software analysis has been successful in tackling many such concerns, albeit on other platforms, such as desktop and server. To fill this gap, he have developed infrastructural tools that permit a wide range of software analyses for the Android smartphone platform. Developing these tools has required surmounting many challenges unique to the smartphone platform: dealing with input non-determinism in sensor-oriented apps, non-standard control ow, low-overhead yet high-fidelity record-and-replay. Our tools can analyze substantial, widely-popular apps running directly on smartphones, and do not require access to the app's source code. We will first present two tools (automated exploration, record-and-replay) that increase Android app reliability by allowing apps to be explored automatically, and bugs replayed or isolated. Next, we present several security applications of our infrastructure: a permission evolution study on the Android ecosystem; understanding and quantifying the risk posed by URL accesses in benign and malicious apps; app profiling to summarize app behavior; and Moving Target Defense for thwarting attacks.
Identifier
85017138505 (Scopus)
Publication Title
Journal of Interconnection Networks
External Full Text Location
https://doi.org/10.1142/S0219265917400023
e-ISSN
17936713
ISSN
02192659
Issue
1
Volume
17
Recommended Citation
Neamtiu, Iulian; Wei, Xuetao; Faloutsos, Michalis; Gomez, Lorenzo; Azim, Tanzirul; Hu, Yongjian; and Shan, Zhiyong, "Improving Smartphone Security and Reliability" (2017). Faculty Publications. 9724.
https://digitalcommons.njit.edu/fac_pubs/9724
