在Android应用程序中使用低注意力隐蔽通道隐藏隐私泄漏

2013 International Conference on Availability, Reliability and Security Pub Date : 2013-09-02 DOI:10.1109/ARES.2013.92

Jean-François Lalande, S. Wendzel

{"title":"在Android应用程序中使用低注意力隐蔽通道隐藏隐私泄漏","authors":"Jean-François Lalande, S. Wendzel","doi":"10.1109/ARES.2013.92","DOIUrl":null,"url":null,"abstract":"Covert channels enable a policy-breaking communication not foreseen by a system's design. Recently, covert channels in Android were presented and it was shown that these channels can be used by malware to leak confidential information (e.g., contacts) between applications and to the Internet. Performance aspects as well as means to counter these covert channels were evaluated. In this paper, we present novel covert channel techniques linked to a minimized footprint to achieve a high covertness. Therefore, we developed a malware that slowly leaks collected private information and sends it synchronously based on four covert channel techniques. We show that some of our covert channels do not require any extra permission and escape well know detection techniques like TaintDroid. Experimental results confirm that the obtained throughput is correlated to the user interaction and show that these new covert channels have a low energy consumption - both aspects contribute to the stealthiness of the channels. Finally, we discuss concepts for novel means capable to counter our covert channels and we also discuss the adaption of network covert channel features to Android-based covert channels.","PeriodicalId":302747,"journal":{"name":"2013 International Conference on Availability, Reliability and Security","volume":"56 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2013-09-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"46","resultStr":"{\"title\":\"Hiding Privacy Leaks in Android Applications Using Low-Attention Raising Covert Channels\",\"authors\":\"Jean-François Lalande, S. Wendzel\",\"doi\":\"10.1109/ARES.2013.92\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Covert channels enable a policy-breaking communication not foreseen by a system's design. Recently, covert channels in Android were presented and it was shown that these channels can be used by malware to leak confidential information (e.g., contacts) between applications and to the Internet. Performance aspects as well as means to counter these covert channels were evaluated. In this paper, we present novel covert channel techniques linked to a minimized footprint to achieve a high covertness. Therefore, we developed a malware that slowly leaks collected private information and sends it synchronously based on four covert channel techniques. We show that some of our covert channels do not require any extra permission and escape well know detection techniques like TaintDroid. Experimental results confirm that the obtained throughput is correlated to the user interaction and show that these new covert channels have a low energy consumption - both aspects contribute to the stealthiness of the channels. Finally, we discuss concepts for novel means capable to counter our covert channels and we also discuss the adaption of network covert channel features to Android-based covert channels.\",\"PeriodicalId\":302747,\"journal\":{\"name\":\"2013 International Conference on Availability, Reliability and Security\",\"volume\":\"56 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2013-09-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"46\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2013 International Conference on Availability, Reliability and Security\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ARES.2013.92\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 International Conference on Availability, Reliability and Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ARES.2013.92","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 46

摘要

隐蔽通道可以实现系统设计无法预见的违反策略的通信。最近，Android中的隐蔽通道被提出，并被证明这些通道可以被恶意软件用来泄露应用程序之间和互联网的机密信息(例如联系人)。评估了性能方面以及对抗这些隐蔽通道的方法。在本文中，我们提出了一种新的隐蔽信道技术，该技术与最小化占用空间相关联，以实现高隐蔽性。因此，我们开发了一种恶意软件，它可以缓慢地泄露收集到的私人信息，并基于四种隐蔽通道技术同步发送。我们展示了我们的一些隐蔽通道不需要任何额外的许可，并逃脱了众所周知的检测技术，如TaintDroid。实验结果证实了所获得的吞吐量与用户交互相关，并且表明这些新的隐蔽信道具有较低的能量消耗，这两个方面都有助于信道的隐身性。最后，我们讨论了能够对抗我们的隐蔽通道的新方法的概念，我们还讨论了网络隐蔽通道特征对基于android的隐蔽通道的适应。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Hiding Privacy Leaks in Android Applications Using Low-Attention Raising Covert Channels

Covert channels enable a policy-breaking communication not foreseen by a system's design. Recently, covert channels in Android were presented and it was shown that these channels can be used by malware to leak confidential information (e.g., contacts) between applications and to the Internet. Performance aspects as well as means to counter these covert channels were evaluated. In this paper, we present novel covert channel techniques linked to a minimized footprint to achieve a high covertness. Therefore, we developed a malware that slowly leaks collected private information and sends it synchronously based on four covert channel techniques. We show that some of our covert channels do not require any extra permission and escape well know detection techniques like TaintDroid. Experimental results confirm that the obtained throughput is correlated to the user interaction and show that these new covert channels have a low energy consumption - both aspects contribute to the stealthiness of the channels. Finally, we discuss concepts for novel means capable to counter our covert channels and we also discuss the adaption of network covert channel features to Android-based covert channels.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2013 International Conference on Availability, Reliability and Security

自引率

0.00%

发文量