poster

POSTER: AdHoneyDroid -- Capture Malicious Android Advertisements

Authors:

Dongqi Wang,

Shuaifu Dai,

Yu Ding,

Tongxin Li,

Xinhui HanAuthors Info & Claims

CCS '14: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security

Pages 1514 - 1516

https://doi.org/10.1145/2660267.2662395

Published: 03 November 2014 Publication History

Get Access

Abstract

In this paper we explore the problem of collecting malicious smartphone advertisements. Most smartphone app contains advertisements and also suffers from vulnerable advertisement libraries. Malicious advertisements exploit the ad library vulnerability and attack victim smartphones. Similar to the traditional honeypots, we need an effective way to capture malicious ads. In this paper, we provide our approach named AdHoneyDroid. We build a crawler to gather apps on the android marketplaces and manually collect ad libraries and their vulnerabilities. Then AdHoneyDroid executes the apps and detects malicious advertisements. In our approach, we adopt the idea of API sandbox and TaintDroid to detect the attack event. We store the malicious advertisements in a database for future analysis. Malicious ads can help security analysts have a better understanding of current mobile attacks and also disclose the attack payloads.

References

[1]

Israel Mojica Ruiz, Meiyappan Nagappan, Bram Adams, Thorsten Berger, Steffen Dienst, and Ahmed Hassan. On the relationship between the number of ad libraries in an android app and its rating. IEEE Software, 99(PrePrints):1, 2014.

Google Scholar

[2]

FireEye Inc. Js-binding-over-http vulnerability and javascript sidedoor: Security risks affecting billions of android app downloads. http://goo.gl/eAFHEK.

Google Scholar

[3]

Google Inc. Android platform version distribution. http://developer.android.com/about/dashboards/index.html#Platform.

Google Scholar

[4]

William Enck, Peter Gilbert, Byung-Gon Chun, Landon P. Cox, Jaeyeon Jung, Patrick McDaniel, and Anmol N. Sheth. Taintdroid: An information flow tracking system for real-time privacy monitoring on smartphones. Commun. ACM, 57(3):99--106, March 2014.

Digital Library

Google Scholar

[5]

Google Inc. Google play. https://play.google.com/store.

Google Scholar

[6]

Google Inc. @javascriptinterface. http://developer.android.com/guide/webapps/webview.html#BindingJavaScript.

Google Scholar

[7]

Google Inc. addjavascriptinterface. http://developer.android.com/reference/android/webkit/WebView.html#addJavascriptInterface(java.lang.Object, java.lang.String).

Google Scholar

[8]

Michael C. Grace, Wu Zhou, Xuxian Jiang, and Ahmad-Reza Sadeghi. Unsafe exposure analysis of mobile in-app advertisements. In Proceedings of the Fifth ACM Conference on Security and Privacy in Wireless and Mobile Networks, WISEC '12, pages 101--112, New York, NY, USA, 2012. ACM.

Digital Library

Google Scholar

[9]

Ryan Stevens, Clint Gibler, Jon Crussell, Jeremy Erickson, and Hao Chen. Investigating user privacy in android ad libraries. Citeseer.

Google Scholar

[10]

Shashi Shekhar, Michael Dietz, and Dan S. Wallach. Adsplit: Separating smartphone advertising from applications. In Proceedings of the 21st USENIX Conference on Security Symposium, Security'12, pages 28--28, Berkeley, CA, USA, 2012. USENIX Association.

Digital Library

Google Scholar

[11]

Paul Pearce, Adrienne Porter Felt, Gabriel Nunez, and David Wagner. Addroid: Privilege separation for applications and advertisers in android. In Proceedings of the 7th ACM Symposium on Information, Computer and Communications Security, ASIACCS '12, pages 71--72, New York, NY, USA, 2012. ACM.

Digital Library

Google Scholar

[12]

H. Kawabata, T. Isohara, K. Takemori, A Kubota, J. Kani, H. Agematsu, and M. Nishigaki. Sanadbox: Sandboxing third party advertising libraries in a mobile application. In Communications (ICC), 2013 IEEE International Conference on, pages 2150--2154, June 2013.

Crossref

Google Scholar

Cited By

View all

Li JWu BWen W(2019)Android Malware Detection Method Based on Frequent Pattern and Weighted Naive BayesCyber Security10.1007/978-981-13-6621-5_4(36-51)Online publication date: 20-Feb-2019
https://doi.org/10.1007/978-981-13-6621-5_4
Lin JZhao XLi H(2017)TargetProceedings of the Australasian Computer Science Week Multiconference10.1145/3014812.3014888(1-9)Online publication date: 30-Jan-2017
https://dl.acm.org/doi/10.1145/3014812.3014888

Index Terms

POSTER: AdHoneyDroid -- Capture Malicious Android Advertisements
1. Security and privacy
  1. Intrusion/anomaly detection and malware mitigation
  2. Systems security
    1. Operating systems security

Recommendations

Android Applications Repackaging Detection Techniques for Smartphone Devices

The problem of malwares affecting Smartphones has been widely recognized by the researchers across the world. Majority of these malwares target Android OS. Studies have found that most of the Android malwares hide inside repackaged apps to get inside ...
Poster: the quest for security against privilege escalation attacks on android
CCS '11: Proceedings of the 18th ACM conference on Computer and communications security

In this paper we present the design and implementation of a security framework that extends the reference monitor of the Android middleware and deploys a mandatory access control on Linux kernel (based on Tomoyo [9]) aiming at detecting and preventing ...
An Explorative Study of the Mobile App Ecosystem from App Developers' Perspective
WWW '17: Proceedings of the 26th International Conference on World Wide Web

With the prevalence of smartphones, app markets such as Apple App Store and Google Play has become the center stage in the mobile app ecosystem, with millions of apps developed by tens of thousands of app developers in each major market. This paper ...

Comments

Information & Contributors

Information

Published In

CCS '14: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security

November 2014

1592 pages

ISBN:9781450329576

DOI:10.1145/2660267

General Chair:
Gail-Joon Ahn
Arizona State University, USA
,
Program Chairs:
Moti Yung
Google -- Columbia University, USA
,
Ninghui Li
Purdue University, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 03 November 2014

Check for updates

Author Tags

Qualifiers

Poster

Funding Sources

National Natural Science Foundation of China

Conference

CCS'14

Sponsor:

SIGSAC

CCS'14: 2014 ACM SIGSAC Conference on Computer and Communications Security

November 3 - 7, 2014

Arizona, Scottsdale, USA

Acceptance Rates

CCS '14 Paper Acceptance Rate 114 of 585 submissions, 19%;

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
385
Total Downloads

Downloads (Last 12 months)24
Downloads (Last 6 weeks)2

Reflects downloads up to 27 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Li JWu BWen W(2019)Android Malware Detection Method Based on Frequent Pattern and Weighted Naive BayesCyber Security10.1007/978-981-13-6621-5_4(36-51)Online publication date: 20-Feb-2019
https://doi.org/10.1007/978-981-13-6621-5_4
Lin JZhao XLi H(2017)TargetProceedings of the Australasian Computer Science Week Multiconference10.1145/3014812.3014888(1-9)Online publication date: 30-Jan-2017
https://dl.acm.org/doi/10.1145/3014812.3014888

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Android Applications Repackaging Detection Techniques for Smartphone Devices

Poster: the quest for security against privilege escalation attacks on android

An Explorative Study of the Mobile App Ecosystem from App Developers' Perspective

Comments

Information

Published In

Sponsors

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Upcoming Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations