SAFETYCHECK Eric Hatch | David Allen |Bailee Lucas| Austin Rhodes
SECURITY PROBLEM New vulnerabilities are discovered everyday in tools used by Android Apps. Users don’t know about or understand latest vulnerabilities.
SECURITY PROBLEM Google play store doesn’t check for known vulnerabilities in source code.
SECURITY PROBLEM Users are left to trust developers that their apps are safe. Often developers are unaware of vulnerabilities in there app.
POSSIBLE ATTACKS
SOLUTION Two parts: SafetyCheck PlayDrone
PLAYDRONE -Scans source code of apps on the Google play store. -Detects vulnerabilities. -Stores results in database.
SAFETYCHECK End User Android App. SafetyCheck will warn users of apps that contain vulnerabilities. Uses data collected via PlayDrone
IMPACT OF SOLUTION Users are better informed about apps on their phone. Users can now make a more educated decision about what apps to install.
IMPACT OF SOLUTION CONT. Increase motivation for developers to produce patches
CHALLENGES 1.Obtaining PlayDrone technology 2.Finding a way to coexist with Google’s Play Store restrictions 3.Keeping the database updated for: App updates New vulnerabilities
RECAP 1.Non-malicious apps can unintentionally contain security vulnerabilities 2.There exists a technology, PlayDrone, to scan for these vulnerabilities 3.Our solution informs end-users of these potential vulnerabilities
THANK YOU Q&A