DocumentCode
3730241
Title
SpyAware: Investigating the privacy leakage signatures in app execution traces
Author
Hui Xu;Yangfan Zhou;Cuiyun Gao;Yu Kang;Michael R. Lyu
Author_Institution
Dept. of Computer Science, The Chinese University of Hong Kong
fYear
2015
Firstpage
348
Lastpage
358
Abstract
A new security problem on smartphones is the wide spread of spyware nested in apps, which occasionally and silently collects user´s private data in the background. The state-of-the-art work for privacy leakage detection is dynamic taint analysis, which, however, suffers usability issues because it requires flashing a customized system image to track the taint propagation and consequently incurs great overhead. Through a real-world privacy leakage case study, we observe that the spyware behaviors share some common features during execution, which may further indicate a correlation between the data flow of privacy leakage and some specific features of program execution traces. In this work, we examine such a hypothesis using the newly proposed SpyAware framework, together with a customized TaintDroid as the ground truth. SpyAware includes a profiler to automatically profile app executions in binder calls and system calls, a feature extractor to extract feature vectors from execution traces, and a classifier to train and predict spyware executions based on the feature vectors. We conduct an evaluation experiment with 100 popular apps downloaded from Google Play. Experimental results show that our approach can achieve promising performance with 67.4% accuracy in detecting device id spyware executions and 78.4% in recognizing location spyware executions.
Keywords
"Privacy","Smart phones","Androids","Humanoid robots","Spyware","Feature extraction","Data privacy"
Publisher
ieee
Conference_Titel
Software Reliability Engineering (ISSRE), 2015 IEEE 26th International Symposium on
Type
conf
DOI
10.1109/ISSRE.2015.7381828
Filename
7381828
Link To Document