论文信息 - Nipdroid: An Enhanced Detection Mechanism for Android IPC

Nipdroid: An Enhanced Detection Mechanism for Android IPC

As one of the most popular mobile operating system, Android has been troubled by privilege escalation attacks. This is because that the original Android ignores the inspection of transmitted data in intent. It only checks the permission of intent to determine whether the Inter-Process Communication (IPC) could continue. We developed Nipdroid to solve the mentioned defect in Android IPC detection. Nipdroid is based on the technology of marking and tracking sensitive data. After the original Android detection, Nipdroid extracts the sensitive tags from intent, and matches them with the permission lists of both communication apps, and then checks whether there is unreasonable data transmission in IPC. Experiments show that Nipdroid is effective on both preventing privilege escalation attacks and protecting user's sensitive data.

Chen Chen | Weidong Liu | Jia Xing Song

[1] Byung-Gon Chun,et al. TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones , 2010, OSDI.

[2] Xinwen Zhang,et al. Apex: extending Android permission model and enforcement with user-defined runtime constraints , 2010, ASIACCS '10.

[3] Shashi Shekhar,et al. QUIRE: Lightweight Provenance for Smart Phone Operating Systems , 2011, USENIX Security Symposium.

[4] David A. Wagner,et al. Analyzing inter-application communication in Android , 2011, MobiSys '11.

[5] Patrick D. McDaniel,et al. Semantically rich application-centric security in Android , 2012 .

[6] Ahmad-Reza Sadeghi,et al. Poster: the quest for security against privilege escalation attacks on android , 2011, CCS '11.

[7] Ahmad-Reza Sadeghi,et al. XManDroid: A New Android Evolution to Mitigate Privilege Escalation Attacks , 2011 .