Understanding and improving app installation security mechanisms through empirical analysis of android

Security and Privacy in Smartphones and Mobile Devices Pub Date : 2012-10-19 DOI:10.1145/2381934.2381949

David Barrera, Jeremy Clark, D. McCarney, P. V. Oorschot

{"title":"Understanding and improving app installation security mechanisms through empirical analysis of android","authors":"David Barrera, Jeremy Clark, D. McCarney, P. V. Oorschot","doi":"10.1145/2381934.2381949","DOIUrl":null,"url":null,"abstract":"We provide a detailed analysis of two largely unexplored aspects of the security decisions made by the Android operating system during the app installation process: update integrity and UID assignment. To inform our analysis, we collect a dataset of Android application metadata and extract features from these binaries to gain a better understanding of how developers interact with the security mechanisms invoked during installation. Using the dataset, we find empirical evidence that Android's current signing architecture does not encourage best security practices. We also find that limitations of Android's UID sharing method force developers to write custom code rather than rely on OS-level mechanisms for secure data transfer between apps. As a result of our analysis, we recommend incrementally deployable improvements, including a novel UID sharing mechanism with applicability to signature-level permissions. We additionally discuss mitigation options for a security bug in Google's Play store, which allows apps to transparently obtain more privileges than those requested in the manifest.","PeriodicalId":213305,"journal":{"name":"Security and Privacy in Smartphones and Mobile Devices","volume":"26 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-10-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"69","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Security and Privacy in Smartphones and Mobile Devices","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2381934.2381949","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 69

Abstract

We provide a detailed analysis of two largely unexplored aspects of the security decisions made by the Android operating system during the app installation process: update integrity and UID assignment. To inform our analysis, we collect a dataset of Android application metadata and extract features from these binaries to gain a better understanding of how developers interact with the security mechanisms invoked during installation. Using the dataset, we find empirical evidence that Android's current signing architecture does not encourage best security practices. We also find that limitations of Android's UID sharing method force developers to write custom code rather than rely on OS-level mechanisms for secure data transfer between apps. As a result of our analysis, we recommend incrementally deployable improvements, including a novel UID sharing mechanism with applicability to signature-level permissions. We additionally discuss mitigation options for a security bug in Google's Play store, which allows apps to transparently obtain more privileges than those requested in the manifest.

查看原文本刊更多论文

通过对android的实证分析，了解并改进应用安装安全机制

我们详细分析了Android操作系统在应用程序安装过程中所做的安全决策的两个主要未探索的方面:更新完整性和UID分配。为了便于分析，我们收集了Android应用程序元数据的数据集，并从这些二进制文件中提取功能，以便更好地了解开发人员如何与安装过程中调用的安全机制进行交互。使用数据集，我们发现经验证据表明，Android当前的签名架构不鼓励最佳安全实践。我们还发现，Android UID共享方法的局限性迫使开发人员编写自定义代码，而不是依赖于操作系统级别的机制来实现应用程序之间的安全数据传输。根据我们的分析，我们建议进行可增量部署的改进，包括适用于签名级权限的新颖UID共享机制。我们还讨论了Google Play商店中安全漏洞的缓解选项，该漏洞允许应用程序透明地获得比清单中请求的权限更多的权限。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Security and Privacy in Smartphones and Mobile Devices

自引率

0.00%

发文量