A Framework For Detecting And Countering Android Ui Attacks Via Inspection Of Ipc Traffic

Creator

Joshua Kraunelis, University of Massachusetts Lowell
Xinwen Fu, University of Central Florida
Wei Yu, Towson University
Wei Zhao, University of Macau

Abstract

Android represents an ever-increasing share of the worldwide smart device market. The platform's ubiquity and open nature make Android a prime target for malicious actors. Unfortunately, device fragmentation among manufacturers makes maintaining cyber security difficult, invoking the need for third party security software. We present a framework for detecting and countering deceptive user interface attacks on the Android platform via inspection and analysis of inter-process communication transactions in the operating system. We evaluate our proof of concept implementation on a known class of malware that exploits the Android display system, allowing a malicious application to control the screen and mimic any application launched by the user. We achieve 100% detection rate of this malicious behavior with no false alarms.

Publication Date

7-27-2018

Publication Title

IEEE International Conference on Communications

Volume

2018-May

Document Type

Article; Proceedings Paper

Personal Identifier

scopus

DOI Link

https://doi.org/10.1109/ICC.2018.8422187

Copyright Status

Unknown

Socpus ID

85051419381 (Scopus)

Source API URL

https://api.elsevier.com/content/abstract/scopus_id/85051419381

STARS Citation

Kraunelis, Joshua; Fu, Xinwen; Yu, Wei; and Zhao, Wei, "A Framework For Detecting And Countering Android Ui Attacks Via Inspection Of Ipc Traffic" (2018). Scopus Export 2015-2019. 7844.
https://stars.library.ucf.edu/scopus2015/7844