Inference attack in Android Activity based on program fingerprint

Yang, L; Zhi, Y; Wei, T; Yu, S; Ma, J

Inference attack in Android Activity based on program fingerprint

Yang, L Zhi, Y Wei, T Yu, S

Ma, J

Permalink

Publication Type:: Journal Article
Citation:: Journal of Network and Computer Applications, 2019, 127 pp. 92 - 106
Issue Date:: 2019-02-01

Closed Access

	Filename	Description	Size
	Inference attack in Android Activity based on program fingerprint.pdf	Published Version	2.11 MB	Adobe PDF	View/Open

Copyright Clearance Process

Recently Added
In Progress
Closed Access

This item is closed access and not available.

Full metadata record

Field	Value	Language
dc.contributor.author	Yang, L	en_US
dc.contributor.author	Zhi, Y	en_US
dc.contributor.author	Wei, T	en_US
dc.contributor.author	Yu, S https://orcid.org/0000-0003-4485-6743	en_US
dc.contributor.author	Ma, J	en_US
dc.date.issued	2019-02-01	en_US
dc.identifier.citation	Journal of Network and Computer Applications, 2019, 127 pp. 92 - 106	en_US
dc.identifier.issn	1084-8045	en_US
dc.identifier.uri	http://hdl.handle.net/10453/135526
dc.description.abstract	© 2018 Private breach has always been an important threat to mobile security. Recent studies show that an attacker can infer users’ private information through side channels, such as the use of runtime memory and network usage. For side-channel attacks, malicious applications generally run parallel in the background with a foreground application and stealthily collect side-channel information. In this paper, we analyze the relationship between memory changes and Activity transition, then use side-channel information to label an Activity and build an Activity signature database. We show how to use the runtime memory exposure to infer the Activity transition of the current application and use other side channels to infer its Activity interface. We demonstrate the effectiveness of the attacks with 5 popular applications that contain user sensitive information, and successfully inferred most of the Activity transition and Activity interface process. Moreover, we propose a protection scheme which can effectively resist side-channel attacks.	en_US
dc.relation.ispartof	Journal of Network and Computer Applications	en_US
dc.relation.isbasedon	10.1016/j.jnca.2018.12.007	en_US
dc.subject.classification	Networking & Telecommunications	en_US
dc.title	Inference attack in Android Activity based on program fingerprint	en_US
dc.type	Journal Article
utslib.citation.volume	127	en_US
utslib.for	0806 Information Systems	en_US
utslib.for	0805 Distributed Computing	en_US
utslib.for	1005 Communications Technologies	en_US
pubs.embargo.period	Not known	en_US
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
utslib.copyright.status	closed_access
pubs.publication-status	Published	en_US
pubs.volume	127	en_US

Abstract:

© 2018 Private breach has always been an important threat to mobile security. Recent studies show that an attacker can infer users’ private information through side channels, such as the use of runtime memory and network usage. For side-channel attacks, malicious applications generally run parallel in the background with a foreground application and stealthily collect side-channel information. In this paper, we analyze the relationship between memory changes and Activity transition, then use side-channel information to label an Activity and build an Activity signature database. We show how to use the runtime memory exposure to infer the Activity transition of the current application and use other side channels to infer its Activity interface. We demonstrate the effectiveness of the attacks with 5 popular applications that contain user sensitive information, and successfully inferred most of the Activity transition and Activity interface process. Moreover, we propose a protection scheme which can effectively resist side-channel attacks.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/135526