Article (Scientific journals)
Understanding Android App Piggybacking: A Systematic Study of Malicious Code Grafting
LI, Li; LI, Daoyuan; BISSYANDE, Tegawendé François D Assise et al.
2017In IEEE Transactions on Information Forensics and Security
Peer reviewed
 

Files


Full Text
article.pdf
Author preprint (913.67 kB)
Download

All documents in ORBilu are protected by a user license.

Send to



Details



Abstract :
[en] The Android packaging model offers ample opportunities for malware writers to piggyback malicious code in popular apps, which can then be easily spread to a large user base. Although recent research has produced approaches and tools to identify piggybacked apps, the literature lacks a comprehensive investigation into such phenomenon. We fill this gap by 1) systematically building a large set of piggybacked and benign apps pairs, which we release to the community, 2) empirically studying the characteristics of malicious piggybacked apps in comparison with their benign counterparts, and 3) providing insights on piggybacking processes. Among several findings providing insights, analysis techniques should build upon to improve the overall detection and classification accuracy of piggybacked apps, we show that piggybacking operations not only concern app code but also extensively manipulates app resource files, largely contradicting common beliefs. We also find that piggybacking is done with little sophistication, in many cases automatically, and often via library code.
Disciplines :
Computer science
Author, co-author :
LI, Li ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
LI, Daoyuan ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
BISSYANDE, Tegawendé François D Assise  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
KLEIN, Jacques ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC)
LE TRAON, Yves ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
Lo, David
Cavallaro, Lorenzo
External co-authors :
yes
Language :
English
Title :
Understanding Android App Piggybacking: A Systematic Study of Malicious Code Grafting
Publication date :
January 2017
Journal title :
IEEE Transactions on Information Forensics and Security
Peer reviewed :
Peer reviewed
Available on ORBilu :
since 20 January 2017

Statistics


Number of views
296 (32 by Unilu)
Number of downloads
1479 (34 by Unilu)

Scopus citations®
 
117
Scopus citations®
without self-citations
82
WoS citations
 
84

Bibliography


Similar publications



Contact ORBilu