Kalutarage Harsha Kumara, Nguyen Hoang Nga, Shaikh Siraj Ahmed
1The Centre for Secure Information Technologies, Queen's University of Belfast, Belfast, UK.
2Centre for Mobility and Transport Research, Coventry University, Coventry, CV1 5FB UK.
Telecommun Syst. 2017;66(3):417-430. doi: 10.1007/s11235-017-0296-1. Epub 2017 Mar 7.
App collusion refers to two or more apps working together to achieve a malicious goal that they otherwise would not be able to achieve individually. The permissions based security model of Android does not address this threat as it is rather limited to mitigating risks of individual apps. This paper presents a technique for quantifying the collusion threat, essentially the first step towards assessing the collusion risk. The proposed method is useful in finding the collusion candidate of interest which is critical given the high volume of Android apps available. We present our empirical analysis using a classified corpus of over 29,000 Android apps provided by Intel Security.
应用程序勾结是指两个或多个应用程序协同工作以实现恶意目标,而这些目标是它们单独无法实现的。安卓基于权限的安全模型无法应对这种威胁,因为它在很大程度上仅限于降低单个应用程序的风险。本文提出了一种量化勾结威胁的技术,这实际上是评估勾结风险的第一步。鉴于可用安卓应用程序数量众多,所提出的方法有助于找到感兴趣的勾结候选对象,这一点至关重要。我们使用英特尔安全提供的超过29000个安卓应用程序的分类语料库进行了实证分析。
