(2020) Automatic Uncovering of Hidden Behaviors from Input Validation in Mobile Apps.
|
Text
inputscope_sp2020.pdf Download (568kB) | Preview |
Abstract
Mobile applications (apps) have exploded in popularity, with billions of smartphone users using millions of apps available through markets such as the Google Play Store or the Apple App Store. While these apps have rich and useful functionality that is publicly exposed to end users, they also contain hidden behaviors that are not disclosed, such as backdoors and blacklists designed to block unwanted content. In this paper, we show that the input validation behavior—the way the mobile apps process and respond to data entered by users—can serve as a powerful tool for uncovering such hidden functionality. We therefore have developed a tool, InputScope, that automatically detects both the execution context of user input validation and also the content involved in the validation, to automatically expose the secrets of interest. We have tested InputScope with over 150,000 mobile apps, including popular apps from major app stores and pre- installed apps shipped with the phone, and found 12,706 mobile apps with backdoor secrets and 4,028 mobile apps containing blacklist secrets.
Item Type: | Conference or Workshop Item (A Paper) (Paper) |
---|---|
Divisions: | Giancarlo Pellegrino (GP) |
Conference: | SP IEEE Symposium on Security and Privacy |
Depositing User: | Giancarlo Pellegrino |
Date Deposited: | 21 Feb 2020 17:00 |
Last Modified: | 22 Oct 2020 11:47 |
Primary Research Area: | NRA3: Threat Detection and Defenses |
URI: | https://publications.cispa.saarland/id/eprint/3032 |
Actions
Actions (login required)
View Item |