Presentation is loading. Please wait.

Presentation is loading. Please wait.

TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones Presented By: Steven Zittrower William Enck ( Penn St) (Duke)

Published byMariah Barnett Modified over 9 years ago

Similar presentations

Presentation on theme: "TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones Presented By: Steven Zittrower William Enck ( Penn St) (Duke)"— Presentation transcript:

1 TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones Presented By: Steven Zittrower William Enck ( Penn St) (Duke) Peter Gilbert Byung-Gon Chun (Intel) (Duke) Landon P. Cox Jaeyeon Jung (Intel) (Penn St) Pat McDaniel Anmol Sheth (Intel) Authors: Presented at OSDI 2010

2 Overview  What is TaintDroid  Why it’s Important  Implementation  Costs and Tradeoffs  Results ?

3 Modern Smartphones GPS/Location Data Camera/Photos/Microphone Contacts SMS Messages SIM Identifiers (IMSI, ICC-ID, IMEI)

4 TaintDroid 1. Identifies Sensitive Data 2. Taints and Tracks Data Flow via  Variables, Messages, Methods, and Files 3. Monitors Behavior of Running Applications in Realtime 4. Identifies Misuse of Private Data

5 Android: The OS  Built on the Linux kernel  Applications run on top of middleware  Written in JAVA  Stack-based  Executed in the Dalvik VM Interpreter  Register-based  Allows access to certain native libraries

6 Android architecture graphic courtesy of Google

7 TaintDroid Architecture Trusted ApplicationsUntrusted Applications Dalvik VM Interpreter Binder IPC Library Binder Kernel Module Binder IPC Library Dalvik VM Interpreter Trusted Library Taint Source Taint Sink Binder Hook Interpreted Code Kernel Userspace Taint Map 1 2 3 4 5 6 7 9 8 TaintDroid Architecture map courtesy of TaintDroid: An Information-Flow…

8 Types of Tainted Data  Variables  Locals, arguments, statics, classes, and arrays  Messages  Taint tag is upper bound of tainted variables in message  Methods  Tracks and propagates system provided native libraries  Files  One tag per-file, same logic as messages

9 How Things Get Tainted Sources  Low-bandwidth Sensors  High-bandwidth Sensors  Information Databases  Devices Identifiers Sinks  Network Calls  File-system Writes

10 Taint Propagation  Rules for passing taint markers  α←C : τ α ←0  β←α:τ β ←τ α  α←α ⊗ β:τ α ←τ α ∪ τ β  …  Govern steps 3, 7 of TaintDroid Architecture

11 Experiments  30 random popular applications  100 minutes, 22,594 packets, 1,130 TCP connections  Logged all TaintDroid messages  Verified by logging network traffic

12 Performance Overhead

13 Throughput Overhead

14 Performance Takeaways  14% performance overhead  Most operations less than 20ms slower  IPC 27% slower than normal Android OS  Due to continual copying of tags as values placed in buffers  3.5% more memory is used

15 Results

16 Contributions  Detects leakage of private after entering applications  Previous work deals with securing data from non-trusted applications  Works even if data is encrypted  Identifies insecure, malicious, and unethical mobile applications  Modest performance overheads

17 Weaknesses  Requires custom OS modification  No checks on native libraries  No power overhead data  Network traffic only sink tested  Malicious attackers can bypass TaintDroid

18 Improvements  Real-time tracking and filtering  Eliminate or reduce false-positives through better management of variable-level tags  Detection of bypass attempts

19 References and Contributions  TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smart Phones  Google (http://code.google.com/android/)  Clip-art courtesy of  Norebbo.com  NASA.com  Linuxchixla.org

Download ppt "TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones Presented By: Steven Zittrower William Enck ( Penn St) (Duke)"

Similar presentations

DroidScope: Seamlessly Reconstructing the OS and Dalvik Semantic Views for Dynamic Android Malware Analysis Lok Kwong Yan, and Heng Yin Syracuse University.

DroidScope: Seamlessly Reconstructing the OS and Dalvik Semantic Views for Dynamic Android Malware Analysis Lok Kwong Yan, and Heng Yin Syracuse University.
Android architecture overview

Android architecture overview
Introduction to Android Mohammad A. Gowayyed CS334-Spring 2014.

Introduction to Android Mohammad A. Gowayyed CS334-Spring 2014.
Android Platform Overview (1)

Android Platform Overview (1)
Aurasium: Practical Policy Enforcement for Android Applications By Yaoqi USENIX Security Symposium 2012.

Aurasium: Practical Policy Enforcement for Android Applications By Yaoqi USENIX Security Symposium 2012.
Mobile Security: Android Amir Houmansadr CS660: Advanced Information Assurance Spring 2015 Content may be borrowed from other resources. See the last slide.

Mobile Security: Android Amir Houmansadr CS660: Advanced Information Assurance Spring 2015 Content may be borrowed from other resources. See the last slide.
William Enck, Peter Gilbert, Byung-Gon Chun, Landon P

William Enck, Peter Gilbert, Byung-Gon Chun, Landon P
Building and Deploying Safe and Secure Android Apps for Enterprise Presented by Technology Consulting Group at Endeavour Software Technologies.

Building and Deploying Safe and Secure Android Apps for Enterprise Presented by Technology Consulting Group at Endeavour Software Technologies.
Using Programmer-Written Compiler Extensions to Catch Security Holes Authors: Ken Ashcraft and Dawson Engler Presented by : Hong Chen CS590F 2/7/2007.

Using Programmer-Written Compiler Extensions to Catch Security Holes Authors: Ken Ashcraft and Dawson Engler Presented by : Hong Chen CS590F 2/7/2007.
Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson Presented By: Rajat Khandelwal – 2009CS10209 Parikshit.

Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson Presented By: Rajat Khandelwal – 2009CS10209 Parikshit.
Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson.

Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson.
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition Chapter 2: Operating-System Structures Modified from the text book.

Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition Chapter 2: Operating-System Structures Modified from the text book.
@2011 Mihail L. Sichitiu1 Android Introduction Platform Overview.

@2011 Mihail L. Sichitiu1 Android Introduction Platform Overview.
Asst.Prof.Dr.Ahmet Ünveren 2014-2015 SPRING Computer Engineering Department Asst.Prof.Dr.Ahmet Ünveren 2014-2015 SPRING Computer Engineering Department.

Asst.Prof.Dr.Ahmet Ünveren SPRING Computer Engineering Department Asst.Prof.Dr.Ahmet Ünveren SPRING Computer Engineering Department.
DYNAMIC DATA TAINTING AND ANALYSIS. Roadmap  Background  TaintDroid  JavaScript  Conclusion.

DYNAMIC DATA TAINTING AND ANALYSIS. Roadmap  Background  TaintDroid  JavaScript  Conclusion.
CS 153 Design of Operating Systems Spring 2015 Lecture 24: Android OS.

CS 153 Design of Operating Systems Spring 2015 Lecture 24: Android OS.
Presentation By Deepak Katta

Presentation By Deepak Katta
Android Introduction Platform Overview.

Android Introduction Platform Overview.
Introduction to Mobile Malware

Introduction to Mobile Malware
Introduction to Java CSIS 3701: Advanced Object Oriented Programming.

Introduction to Java CSIS 3701: Advanced Object Oriented Programming.

Similar presentations

Ads by Google