PasDroid: Real-Time Security Enhancement for Android

Abstract

As the number of Android devices increased dramatically in recent years, the number of malware targeted for Android also has spiked up. Among the security risks brought by or the consequences caused by Android malware, the leakage of sensitive information becomes the majority. Current Android system only offers users a permission granting mechanism in the application installation time. Although some vendors place further mechanisms to let users grant or revoke the permissions at any time, the users still cannot distinguish if any data have been normally transmitted or intentionally leaked by the applications. Based on Taint Droid, we created a real-time security scheme on Android, called PasDroid, to trace dubious data flow and to alert the users with information for judging if a transmission should be allowed or not.