User-Centric Dependence Analysis For Identifying Malicious Mobile Apps

Elish, Karim O.; Yao, Danfeng (Daphne); Ryder, Barbara G.

View/Open

ElishMaliciousMobile2012.pdf (166.3Kb)

Downloads: 76

Date

2012

Author

Elish, Karim O.

Yao, Danfeng (Daphne)

Ryder, Barbara G.

Metadata

Show full item record

Abstract

This paper describes an efficient approach for identifying malicious Android mobile applications through specialized static program analysis. Our solution performs offline analysis and enforces the normal properties of legitimate dataflow patterns to identify programs that violate these properties. To demonstrate the feasibility of our user-centric dependence analysis, we implement a tool to generate a data dependence graph and perform preliminary evaluation to characterize both legitimate and malicious Android apps. Our preliminary results confirm our hypothesis on the differences in user-centric data dependence behaviors between legitimate and malicious apps.

URI

http://hdl.handle.net/10919/84191

Collections

Destination Area: Integrated Security (IS) [92]
Faculty Works, Department of Computer Science [243]