Presentation is loading. Please wait.

Presentation is loading. Please wait.

Suwen Zhu, Long Lu, Kapil Singh

Published byMarie-Christine Clément Modified over 5 years ago

Similar presentations

Presentation on theme: "Suwen Zhu, Long Lu, Kapil Singh"— Presentation transcript:

1 Suwen Zhu, Long Lu, Kapil Singh
CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Suwen Zhu, Long Lu, Kapil Singh ACM MobiSys 2016

2 Emerging Module-level Attacks
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Emerging Module-level Attacks External Modules in mobile apps Usages: ads, analytics, social networks, utilities, etc. Granularities: from libraries to classes Some reported attacks Advertising libs aggressively collecting user demographic info In-app payment libs (18,000 Android apps) covertly upload SMS messages “Module-level attacks” Module-to-module Module-to-system

3 Attack Driving Factors
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Attack Driving Factors Increasing decency on external modules Strong incentives for attackers Easy-to-launch and hard-to-prevent

4 Defense Challenges & Requirements
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Defense Challenges & Requirements Conventional app security sandbox, permissions, etc. operating at app level Previous research fine-grained objects but not subjects Fine-grained Modules Complete module-level mediation Robustness

5 11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Introducing CASE Goal: comprehensive security enforcement on individual app modules Approach Offline rewriting + runtime monitoring Policy-driven enforcement No OS/middleware changes Operating purely in user-spacing Example use cases Limiting ad libs’ data/network/sensor access Enabling least privilege at the module level

6 CASE Threat Model Untrusted Apps / modules Middleware / app runtime
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices CASE Threat Model Untrusted Apps / modules Middleware / app runtime Trusted OS Hardware

7 Challenges Modules of various sizes Implicit module crossings
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Challenges Modules of various sizes Implicit module crossings Completeness Bypassing interception Tampering with enforcement Robustness Two properties: interception integrity and interception invisibility

8 Core Techniques Dual-layer Interception Native-safe Pages
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Core Techniques Dual-layer Interception Fine-grained modules Capturing module-to-module and module-to-system activities Native-safe Pages Preventing Implicit crossing and other bypass Concealed Handler Preventing tampering

9 Dual-layer Interception
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Dual-layer Interception Two Interception layers VM Syscall wrappers Hooking Techniques GOT hooks Dynamic binary patching

10 Dual-layer Interception
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Dual-layer Interception MinSet: Set of interception points 3 executables: libc, linker, libdvm (libart) 30 native functions Purposes class management reflection interception process management self-protection file/socket/IPC interception

11 11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Native-safe Pages Preventing native code from abusing syscall interfaces and VM data For syscall wrappers Locking original wrappers No per-access unlock Using hidden duplicates Rewriter disallows use of swi in JNI

12 Native-safe Pages For VM internal data Generic for other uses
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Native-safe Pages For VM internal data Locking VM data pages during JNI Signal-based thread scheduler Generic for other uses Enabling exclusive call gates Protecting sensitive memory data

13 11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Concealed Handler Enabling blind invocation and atomic execution of (sensitive) functions Leveraging POSIX signals Preventing partial or shortcut execution of security checks Example: system call check

14 Evaluation: App Sets 420 popular apps 20 apps randomly drawn from S1
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Evaluation: App Sets 420 popular apps 20 apps randomly drawn from S1 Android’s unit tests S1 S2 S3

15 Evaluation: Results Rewriting Cost and Compatibility Tests (using S1)
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Evaluation: Results Rewriting Cost and Compatibility Tests (using S1) Avg. app patch time: 6.34 sec Avg. executable size increases: 4.22% Failed or crashed apps: 0 Runtime Overhead (overall tests, using S1) Avg. app startup delay: seconds Battery overhead (exhaustion): 6.43% Runtime Overhead (unit tests, using S2 and S3) Avg. per-operation overhead: 3.91% Avg. end-to-end overhead: 4.93%

16 11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Conclusion CASE enables fine-grained module-level security in Android apps Approach requires no change to OS or middleware Design is robust against malicious Java and native code Evaluation on 420 real apps shows acceptable overhead

17 Thank you! Long Lu long@cs.stonybrook.edu www.longlu.org
11/23/2018 CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices Thank you! Long Lu

Download ppt "Suwen Zhu, Long Lu, Kapil Singh"

Similar presentations

Towards Remote Policy Enforcement for Runtime Protection of Mobile Code Using Trusted Computing Xinwen Zhang Francesco Parisi-Presicce Ravi Sandhu www.list.gmu.edu.

Towards Remote Policy Enforcement for Runtime Protection of Mobile Code Using Trusted Computing Xinwen Zhang Francesco Parisi-Presicce Ravi Sandhu
Operating System Security

Operating System Security
CS533 Concepts of Operating Systems Class 14 Virtualization and Exokernels.

CS533 Concepts of Operating Systems Class 14 Virtualization and Exokernels.
Aurasium: Practical Policy Enforcement for Android Applications

Aurasium: Practical Policy Enforcement for Android Applications
Aurasium: Practical Policy Enforcement for Android Applications By Yaoqi USENIX Security Symposium 2012.

Aurasium: Practical Policy Enforcement for Android Applications By Yaoqi USENIX Security Symposium 2012.
On the Effectiveness of API-Level Access Control Using Bytecode Rewriting in Android Presenter: Lu Gong.

On the Effectiveness of API-Level Access Control Using Bytecode Rewriting in Android Presenter: Lu Gong.
EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM B. Bershad, S. Savage, P. Pardyak, E. G. Sirer, D. Becker, M. Fiuczynski, C. Chambers,

EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM B. Bershad, S. Savage, P. Pardyak, E. G. Sirer, D. Becker, M. Fiuczynski, C. Chambers,
Policy Weaving for Mobile Devices Drew Davidson. Smartphone security is critical – 1200 to 1400 US Army troops to be equipped with Android smartphones.

Policy Weaving for Mobile Devices Drew Davidson. Smartphone security is critical – 1200 to 1400 US Army troops to be equipped with Android smartphones.
Presented by Vaibhav Rastogi.  Advent of Web 2.0 and Mashups  Inclusion of untrusted third party content a necessity  Need to restrict the functionality.

Presented by Vaibhav Rastogi.  Advent of Web 2.0 and Mashups  Inclusion of untrusted third party content a necessity  Need to restrict the functionality.
New Direction for Software Protection in Embedded Systems Department of EECS University of Michigan Feb 22, 2007 Kang G. Shin.

New Direction for Software Protection in Embedded Systems Department of EECS University of Michigan Feb 22, 2007 Kang G. Shin.
Building and Deploying Safe and Secure Android Apps for Enterprise Presented by Technology Consulting Group at Endeavour Software Technologies.

Building and Deploying Safe and Secure Android Apps for Enterprise Presented by Technology Consulting Group at Endeavour Software Technologies.
A SECURE JAILING SYSTEM FOR CONFINING UNTRUSTED APPLICATIONS Guido Noordende, ´Ad´am Balogh, Rutger Hofman, Frances M. T. Brazier, and Andrew S. Tanenbaum.

A SECURE JAILING SYSTEM FOR CONFINING UNTRUSTED APPLICATIONS Guido Noordende, ´Ad´am Balogh, Rutger Hofman, Frances M. T. Brazier, and Andrew S. Tanenbaum.
Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson Presented By: Rajat Khandelwal – 2009CS10209 Parikshit.

Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson Presented By: Rajat Khandelwal – 2009CS10209 Parikshit.
Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, David Becker, Marc.

Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, David Becker, Marc.
Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson.

Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson.
1 Extensible Security Architectures for Java Authors: Dan S.Wallch, Dirk Balfanz Presented by Moonjoo Kim.

1 Extensible Security Architectures for Java Authors: Dan S.Wallch, Dirk Balfanz Presented by Moonjoo Kim.
CS533 Concepts of Operating Systems Class 14 Virtualization.

CS533 Concepts of Operating Systems Class 14 Virtualization.
ANDROID™ OS Security A brief synopsis of the Android Operating System and its security. By Daniel Angelis.

ANDROID™ OS Security A brief synopsis of the Android Operating System and its security. By Daniel Angelis.
Exokernel: An Operating System Architecture for Application-Level Resource Management Dawson R. Engler, M. Frans Kaashoek, and James O’Toole Jr. M.I.T.

Exokernel: An Operating System Architecture for Application-Level Resource Management Dawson R. Engler, M. Frans Kaashoek, and James O’Toole Jr. M.I.T.
Virtual Machine approach to Security Gautam Prasad and Sudeep Pradhan 10/05/2010 CS 239 UCLA.

Virtual Machine approach to Security Gautam Prasad and Sudeep Pradhan 10/05/2010 CS 239 UCLA.

Similar presentations

Ads by Google