CompSci 725 RiskRanker Authors Michael Grace - North Carolina State University, Raleigh, NC, USA & NQ Mobile Security Research Center, Beijing, China Yajin.

Slides:

Advertisements

Similar presentations

Dissecting Android Malware : Characterization and Evolution

Advertisements

PAGE 1 | Gradient colors RGBRGB Diagrams RGBRGB RGBRGB 166.

Day anti-virus anti-virus 1 detecting a malicious file malware, detection, hiding, removing.

SAFETYCHECK Eric Hatch | David Allen |Bailee Lucas| Austin Rhodes.

Software Creates Privacy Mode to Help Secure Android Phones Author: Matt Shipman Researcher: Dr. Xuxian Jiang Presenter: Brett Shofner.

Efficient fault-tolerant scheme based on the RSA system Author: N.-Y. Lee and W.-L. Tsai IEE Proceedings Presented by 詹益誌 2004/03/02.

EventBook What – An Android based Mobile App. Using Social Networking APIs Who – Every mobile user specially targeted to the age group of 16 – 40 Why –

Free Software Alternatives: Avast! Anti-virus

Kaspersky Lab: The Best of Both Worlds Alexey Denisyuk, pre-sales engineer Kaspersky Lab Eastern Europe 5 th April 2012 / 2 nd InfoCom Security Conference.

Android Security Enforcement and Refinement. Android Applications --- Example Example of location-sensitive social networking application for mobile phones.

IOS & Android Security, Hacking and Tweaking Workshop D.Papamartzivanos University Of the Aegean – Info Sec Lab Android Security – Cydia Substrate Dimitris.

Presentation By Deepak Katta

Unsafe Exposure Analysis of Mobile In-App Advertisements Offense: Rachel Stonehirsch.

Understanding Android Security Yinshu Wu William Enck, Machigar Ongtang, and PatrickMcDaniel Pennsylvania State University.

Automated malware classification based on network behavior

11 The Ghost In The Browser Analysis of Web-based Malware Reporter: 林佳宜 Advisor: Chun-Ying Huang /3/29.

IT-security in the Ubiquitous Computing World Chris Kuo, CISSP, CISA Acer eDC (e-Enabling Data Center) Acer Inc. 2007/3/27.

A METHODOLOGY FOR EMPIRICAL ANALYSIS OF PERMISSION-BASED SECURITY MODELS AND ITS APPLICATION TO ANDROID.

DroidKungFu and AnserverBot

Lei Wu, Michael Grace, Yajin Zhou, Chiachih Wu, Xuxian Jiang Department of Computer Science North Carolina State University CCS 2013.

Detecting and Preventing Privilege- Escalation on Android Jiaojiao Fu 1.

Harvesting Developer Credentials in Android Apps

All Your Droid Are Belong To Us: A Survey of Current Android Attacks 단국대학교 컴퓨터 보안 및 OS 연구실 김낙영

Presented by: Kushal Mehta University of Central Florida Michael Spreitzenbarth, Felix Freiling Friedrich-Alexander- University Erlangen, Germany michael.spreitzenbart,

Security Security is a measure of the system’s ability to protect data and information from unauthorized access while still providing access to people.

RiskRanker: Scalable and Accurate Zero‐day Android Malware Detection.

 a crime committed on a computer network, esp. the Internet.

 Two types of malware propagating through social networks, Cross Site Scripting (XSS) and Koobface worm.  How these two types of malware are propagated.

Joseph Eckstrom. The issue  A Dr. Xuxian Jiang at NCSU studied 100,000 apps and the ad libraries that they used. He made some unsettling discoveries.

Serving a Global Audience Brian Oh Director, Business Development.

Dealing with Malware By: Brandon Payne Image source: TechTips.com.

Review of “Towards Taming Privilege-Escalation Attacks on Android” Sven Bugiel, Lucas Davi, Alexandra Dmitrienko, Thomas Fischer, Ahmad-Reza Sadeghi, Bhargava.

Grace. M, Zhou. Y, Shilong. Z, Jiang. X.  RiskRanker analyses the paths within an android application  Potentially malicious security risks are flagged.

Lei Liu, Department of Computer Science, George Mason University Guanhua Yan, Information Sciences Group, Los Alamos National Laboratory Xinwen Zhang,

LOGOPolyUnpack: Automating the Hidden-Code Extraction of Unpack-Executing Malware Royal, P.; Halpin, M.; Dagon, D.; Edmonds, R.; Wenke Lee; Computer Security.

10/1/20071 Automatic Evaluation of Intrusion Detection Systems F. Massicotte, F. Gagnon, Y. Labich, L. Briand, Computer Security Applications Conference,

FireDroid: Hardening Security in Almost-Stock Android Presented By: Kenneth Siu.

1 Privacy Aware Incentive Mechanism to Collect Mobile Data While Preventing Duplication Junggab Son*, Donghyun Kim*, Rasheed Hussain**, Sung-Sik Kwon*,

Sky Advanced Threat Prevention

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. State of Network Security.

CHAPTER 2 Laws of Security. Introduction Laws of security enable user make the judgment about the security of a system. Some of the “laws” are not really.

CRePE: Context-Related Policy Enforcement for Android Mauro Conti, Vu Thien Nga Nguyen and Bruno Crispo Proceedings of the 13 th International Conference.

VMM Based Rootkit Detection on Android

Page 1 Viruses. Page 2 What Is a Virus A virus is basically a computer program that has been written to perform a specific set of tasks. Unfortunately,

©2015 Check Point Software Technologies Ltd. 1 [Restricted] ONLY for designated groups and individuals CHECK POINT MOBILE THREAT PREVENTION.

DeepDroid Dynamically Enforcing Enterprise Policy Manwoong (Andy) Choi

THREATS, VULNERABILITIES IN ANDROID OS BY DNYANADA PRAMOD ARJUNWADKAR AJINKYA THORVE Guided by, Prof. Shambhu Upadhyay.

Android and IOS Permissions Why are they here and what do they want from me?

AppAudit Effective Real-time Android Application Auditing Andrew Jeong

Antivirus Software Technology By Mitchell Zell. Intro  Computers are vulnerable to attack  Most common type of attack is Malware  Short for malicious.

“What the is That? Deception and Countermeasures in the Android User Interface” Presented by Luke Moors.

Get Full Protection on Microsoft Azure with Symantec™ Endpoint Protection 12.1 MICROSOFT AZURE ISV PROFILE: SYMANTEC Symantec™ Endpoint Protection is an.

Some Great Open Source Intrusion Detection Systems (IDSs)

Android App Permission Manager

Understanding Android Security

Harvesting Runtime Values in Android Applications That Feature Anti-Analysis Techniques Presented by Vikraman Mohan.

TaintART: A Practical Multi-level Information-Flow Tracking System for Android RunTime Sadiq Basha.

Presented by Xiaohui (Amy) Lin

Protecting your mobile devices away from virus by a cloud-based approach Wei Wu.

Six Steps to Secure Access for Privileged Insiders and Vendors

Automated Pattern Based Mobile Testing

Binder Attack Surface in Android

Are these Ads Safe: Detecting Hidden A4acks through Mobile App-Web Interfaces Vaibhav Rastogi, Rui Shao, Yan Chen, Xiang Pan, Shihong Zou, and Ryan Riley.

Systematic Detection of capability leaks in stock android smartphones

Android Mobile apps development services company in India

12/5/2018 2:50 AM How to secure your front door with real-time risk assessments of your logons Jan Ketil Skanke COO and Principal Cloud Architect CloudWay.

Android.Adware.Plankton.A % Android.Adware.Wapsx.A – 4.73%

 Mobile application development is similar to Web application development and has its roots in more traditional software development. However, is that.

Mobile App Advertisements

Understanding Android Security

Presentation transcript:

CompSci 725 RiskRanker Authors Michael Grace - North Carolina State University, Raleigh, NC, USA & NQ Mobile Security Research Center, Beijing, China Yajin Zhou - North Carolina State University, Raleigh, NC, USA Qiang Zhang - NQ Mobile Security Research Center, Beijing, China Shihong Zou - NQ Mobile Security Research Center, Beijing, China Xuxian Jiang - North Carolina State University, Raleigh, NC, USA & NQ Mobile Security Research Center, Beijing, China Published in: Mobisys ’12 Proceedings of the 10 th international conference on Mobile systems, applications and services Pages 281 – 294 ACM New York, NY, USA © 2012 Vijay Anand

Summary RiskRanker  Scalable and Accurate Zero-day Android Malware Detection. “We consider a malicious app to be a zero- day if it has not been reported before and cannot be detected by anti-virus software at the time of discovery.” Vijay Anand

Appreciative Points 1.It is a unique analysis system that can automatically detect whether a particular app exhibits dangerous behavior. 2.It identifies malware without using known samples and their signatures. Vijay Anand

Appreciation (Cont.) 3.It identify apps with risky behavior while they are in the app market. 4.“RiskRanker employs a unique two- step method of discovering malware. This two-step method greatly improves the accuracy in identifying patterns of seemingly innocent API uses that can actually be malware.” Vijay Anand

Critical Comment  It does not check for confused- deputy attacks that target the IPC layer. Vijay Anand

Question Many apps collect more information that they need to function and blithely send it to external parties. However, it is an open question on where the line should be drawn on such information leaks, and how much apps need to disclose to the user about how their information is being used? Vijay Anand

Thank You Vijay Anand