By applying machine learning techniques, we give evidence that considering separately the included resource file types significantly improves the detection accuracy of the method. Furthermore, we have shown that the Overlap similarity score performs better than the Jaccard similarity coefficient used in previous works. Indeed, we demonstrate that a very low proportion of identical resource files in two apps is a reliable evidence for repackaging. Our experiments show that the state-of-art tools applying this technique rely on too restrictive thresholds. In this paper we report on our evaluation of the approach, and present substantial improvements to it. Yet, this approach has not been previously validated on a dataset of repackaged apps. Among such techniques, the resource-based repackaging detection approach that compares sets of files included in apks has arguably the best performance. Techniques that rely on visual similarity of Android apps recently emerged as a way to tackle the repackaging detection problem, as code-based detection techniques often fail in terms of efficiency, and effectiveness when obfuscation is applied. ![]() Moreover, it is backward-compatible and transparent for developers, and does not change the application management process on a device.Īndroid app repackaging threatens the health of application markets, as repackaged apps, besides stealing revenue for honest developers, are also a source of malware distribution. The TruStore infrastructure maintains the open nature of the Android ecosystem and requires minor modifications to Android stack. We envisage trusted markets (TruStore servers, which can be, e.g., corporate application markets) that guarantee security by enabling an application vetting process. In our approach, the TruStore client enabled on the end-user device ensures that only the applications, which have been certified by the TruStore server, are installed on the user smartphone. To address this issue, this demo presents how to enable the deployment of application certification service, we called TruStore, for the Android platform. This choice has a lot of advantages but it is also the open door to possible attacks as the recent one shown by Bluebox. Different from other systems, e.g., Apple App Store, Google does not provide any certified vetting process for the Android apps. ![]() In the Android ecosystem, the process of verifying the integrity of downloaded apps is left to the user.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |