Design and Analysis of Push Notification-Based Malware on Android
المؤلفون المشاركون
Kim, Hyoungshick
Hyun, Sangwon
Cho, Junsung
Cho, Geumhwan
المصدر
Security and Communication Networks
العدد
المجلد 2018، العدد 2018 (31 ديسمبر/كانون الأول 2018)، ص ص. 1-12، 12ص.
الناشر
Hindawi Publishing Corporation
تاريخ النشر
2018-07-09
دولة النشر
مصر
عدد الصفحات
12
التخصصات الرئيسية
تكنولوجيا المعلومات وعلم الحاسوب
الملخص EN
Establishing secret command and control (C&C) channels from attackers is important in malware design.
This paper presents design and analysis of malware architecture exploiting push notification services as C&C channels.
The key feature of the push notification-based malware design is remote triggering, which allows attackers to trigger and execute their malware by push notifications.
The use of push notification services as covert channels makes it difficult to distinguish this type of malware from other normal applications also using the same services.
We implemented a backdoor prototype on Android devices as a proof-of-concept of the push notification-based malware and evaluated its stealthiness and feasibility.
Our malware implementation effectively evaded the existing malware analysis tools such as 55 antimalware scanners from VirusTotal and SandDroid.
In addition, our backdoor implementation successfully cracked about 98% of all the tested unlock secrets (either PINs or unlock patterns) in 5 seconds with only a fraction (less than 0.01%) of the total power consumption of the device.
Finally, we proposed several defense strategies to mitigate push notification-based malware by carefully analyzing its attack process.
Our defense strategies include filtering subscription requests for push notifications from suspicious applications, providing centralized management and access control of registration tokens of applications, detecting malicious push messages by analyzing message contents and characteristic patterns demonstrated by malicious push messages, and detecting malware by analyzing the behaviors of applications after receiving push messages.
نمط استشهاد جمعية علماء النفس الأمريكية (APA)
Hyun, Sangwon& Cho, Junsung& Cho, Geumhwan& Kim, Hyoungshick. 2018. Design and Analysis of Push Notification-Based Malware on Android. Security and Communication Networks،Vol. 2018, no. 2018, pp.1-12.
https://search.emarefa.net/detail/BIM-1214447
نمط استشهاد الجمعية الأمريكية للغات الحديثة (MLA)
Hyun, Sangwon…[et al.]. Design and Analysis of Push Notification-Based Malware on Android. Security and Communication Networks No. 2018 (2018), pp.1-12.
https://search.emarefa.net/detail/BIM-1214447
نمط استشهاد الجمعية الطبية الأمريكية (AMA)
Hyun, Sangwon& Cho, Junsung& Cho, Geumhwan& Kim, Hyoungshick. Design and Analysis of Push Notification-Based Malware on Android. Security and Communication Networks. 2018. Vol. 2018, no. 2018, pp.1-12.
https://search.emarefa.net/detail/BIM-1214447
نوع البيانات
مقالات
لغة النص
الإنجليزية
الملاحظات
Includes bibliographical references
رقم السجل
BIM-1214447
قاعدة معامل التأثير والاستشهادات المرجعية العربي "ارسيف Arcif"
أضخم قاعدة بيانات عربية للاستشهادات المرجعية للمجلات العلمية المحكمة الصادرة في العالم العربي
تقوم هذه الخدمة بالتحقق من التشابه أو الانتحال في الأبحاث والمقالات العلمية والأطروحات الجامعية والكتب والأبحاث باللغة العربية، وتحديد درجة التشابه أو أصالة الأعمال البحثية وحماية ملكيتها الفكرية. تعرف اكثر