aurasium practical policy enforcement for android
play

Aurasium: Practical Policy Enforcement for Android Applications - PowerPoint PPT Presentation

Jul 12, 2023 •459 likes •803 views

Aurasium: Practical Policy Enforcement for Android Applications Rubin Xu Hassen Saidi Ross Anderson University of SRI International University of Cambridge Cambridge USENIX Security Symposium 2012 Goal Address the multiple threats

  1. Aurasium: Practical Policy Enforcement for Android Applications Rubin Xu Hassen Saidi Ross Anderson University of SRI International University of Cambridge Cambridge USENIX Security Symposium 2012

  2. Goal  Address the multiple threats posed by malicious applications on Android

  3. Android Malicious Apps

  4. Introduction to Android  Security Features  Process Isolation  Linux user/group permission  App requests permission to OS functionalities  Most checked in remote end i.e. system services  A few (Internet, Camera) checked in Kernel, as special user group

  5. Introduction to Android  Security Features Process ¡Boundary ¡ com.android.demo. ¡app ¡ System ¡Services ¡ Applica'on ¡Code ¡ Telephony ¡Manger ¡ -­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑ ¡ Loca'on ¡Manger ¡ Ac%vity ¡ Ac'vity ¡Manager ¡ Service ¡ Package ¡Manager ¡ Android ¡Run%me ¡ ¡ Broadcast ¡Receiver ¡ Permission …… ¡ (Dalvik ¡VM) ¡ Check Content ¡Provider ¡ Framework ¡Code ¡ Framework ¡Code ¡ Kernel ¡Boundary ¡ Permission Binder (IPC) Socket Check Camera

  6. Malicious Android Apps  Abuse permissions:  Permissions are granted for as long as an App is installed on a device  No restrictions on how often resources and data are accessed  Access and transmit private data  Access to malicious remote servers  application-level privilege escalation  Confused deputy attacks  Gain root privilege

  7. Alternative Approaches  App vetting: Google’s Bouncer  40% decrease in malware  Ineffective once App installed on the device  AV products:  Scanning  Have no visibility into the runtime of an App  Fine grain permissions checking  Require modifications to the OS  Virtualization  Require modification to the OS

  8. Related work  Existing Work  TaintDroid (OSDI 10)  CRePE (ISC 10)  AppFence (CCS 11)  Quire (USENIX Security 2011)  SELinux on Android  Taming Privilege-Escalation (NDSS 2012)  Limitations  Modify OS – requires rooting and flashing firmware.

  9. Related Approaches Information flow Access control Call chain IPC AppFence Android Middleware TainDroid CRePE Linux kernel Quire SELinux Hardware

  10. Solution: Aurasium Repackage Apps to intercept all Interactions with the OS Information flow Access control X Call chain IPC and many more! Android Middleware X Linux kernel Hardware

  11. Aurasium Internals  Two Problems to Solve  Introducing alien code to arbitrary application package  Reliably intercepting application interaction with the OS

  12. Aurasium Internals  How to add code to existing applications  Android application building and packaging process javac dx Classes.dex .class files Java Source Code Zip & Sign aapt Application Resource Compiled Resources Application Package (.apk) AndroidManifest.xml Other Files

  13. Aurasium Internals  How to add code to existing applications  apktool Insert Our Java Code .smali files Classes.dex Insert Metadata Textual AndroidManifest.xml apktool apktool Application Compiled Resources Package Secured Application Application Resources Insert Our Native Library Other Files

  14. Enforcing Security & Privacy Policy  Aurasium way com.android.demo.SecuredApp ¡  Per-application basis Applica'on ¡Code ¡ -­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑-­‑ ¡  No need to root phone and Ac%vity ¡ Service ¡ flash firmware Broadcast ¡Receiver ¡ Content ¡Provider ¡  Almost non-bypassable Framework ¡Code ¡ Aurasium ¡ Kernel

  15. Aurasium Internals  How to Intercept  A closer look at app process Applica'on ¡Code ¡ Framework ¡Code ¡-­‑ ¡Java ¡ Java Native Interface Framework ¡Code ¡-­‑ ¡Na%ve ¡(C++) ¡ ……. libdvm.so libandroid_runtime.so libbinder.so libc.so libm.so libstdc++.so Kernel

  16. Aurasium Internals  How to Intercept  Example: Socket Connection ApkMonitorActivity.onClick() Applica'on ¡Code ¡ HttpURLConnectionImpl.makeConnection() HttpConnection.<init>() Framework ¡-­‑ ¡Java ¡ Socket.connect() PlainSocketImpl.connect() OSNetworkSystem.connect() Java Native Interface OSNetworkSystem_connect() @ libnativehelper.so Framework ¡-­‑ ¡Na%ve ¡ Native Libraries connect() @ libc.so

  17. Aurasium Internals  How to Intercept  Example: Send SMS ApkMonitorActivity.onClick() Applica'on ¡Code ¡ SmsManager.sendTextMessage() Framework ¡-­‑ ¡Java ¡ Isms$Stub$Proxy.sendText() BinderProxy.transact() Java Native Interface transact() @ libbinder.so Framework ¡-­‑ ¡Na%ve ¡ Native Libraries ioctl() @ libc.so

  18. Aurasium Internals  How to Intercept  Intercept at lowest boundary – libc.so Applica'on ¡Code ¡ Framework ¡Code ¡-­‑ ¡Java ¡ Java Native Interface Framework ¡Code ¡– ¡Na%ve ¡(C++) ¡ ……. libdvm.so libandroid_runtime.so libbinder.so Detour Monitoring Code libc.so libm.so libstdc++.so

  19. Aurasium Internals  How to Intercept  Look closer at library calls - dynamic linking libbinder.so libc.so Control flow transfer Indirect memory reference

  20. Aurasium Internals  How to Intercept  Key: Dynamically linked shared object file  Essence: Redo dynamic linking with pointers to our detour code. somelib.so Monitoring Code libc.so X

  21. Aurasium Internals  How to Intercept  Implemented in native code  Almost non-bypassable  Java code cannot modify arbitrary memory  Java code cannot issue syscall directly  Attempts to load native code is monitored  dlopen()

  22. What can you do with Aurasium?  Total visibility into the interactions of an App with the OS and other Apps  Internet connections  connect()  IPC Binder communications  ioctl()  File system manipulations  write(), read()  Access to resources  Ioctl(), read, write()  Linux system calls  fork(), execvp()

  23. Aurasium Internals  How to add code to existing applications  Inevitably destroy original signature  In Android, signature = authorship  Individual app not a problem

  24. Aurasium Internals  How to add code to existing applications  apktool GUI & Policy Insert Our Java Code .smali files Point to Detour Activity Classes.dex Insert Metadata Textual AndroidManifest.xml apktool apktool Application Compiled Resources Package Secured Application Application Resources Insert Our Native Library Detour libc calls Other Files

  25. Evaluation

  26. Evaluation

  27. Evaluation

  28. Evaluation

  29. Evaluation

  30. Evaluation  Tested on Real-world Apps  3491 apps from third-party application store.  1260 malware corpus from Android Genome.  Results  Repackaging:  3476/1258 succeed (99.6%/99.8%)  Failure mode: apktool/baksmali assembly crashes  Device runs  Nexus S under Monkey – UI Exerciser in SDK  Intercept calls from all of 3189 runnable application.

  31. Limitations  99.9% is not 100%  Rely on robustness of apktool  Manual edit of Apps as a workaround  Native code can potentially bypass Aurasium:  Already seen examples of native code in the wild that is capable of doing so  Some mitigation techniques exist

  32. Conclusion  New approach to Android security/privacy  Per-app basis, no need to root phone  Tested against many real world apps  Have certain limitations

  33. The End  Try it out at www.aurasium.com

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Kratos: Discovering Inconsistent Security Policy Enforcement in the Android Framework Yuru Shao ,

Kratos: Discovering Inconsistent Security Policy Enforcement in the Android Framework Yuru Shao ,

Kratos: Discovering Inconsistent Security Policy Enforcement in the Android Framework Yuru Shao , Jason Ott , Qi Alfred Chen, Zhiyun Qian , Z. Morley Mao University of Michigan, University of California Riverside 1 Security Policy

888 views • 22 slides
Around Android Essential Android features illustrated by a walk through a practical example By

Around Android Essential Android features illustrated by a walk through a practical example By

Around Android Essential Android features illustrated by a walk through a practical example By Stefan Meisner Larsen, Trifork. sml@trifork.dk. Twitter: stefanmeisner Agenda Introduction to MoGuard Alert Development Tools Creating the

609 views • 50 slides
Going Native: Using a Large-Scale Analysis of Android Apps to Create a Practical Native-Code

Going Native: Using a Large-Scale Analysis of Android Apps to Create a Practical Native-Code

Introduction Background Analysis infrastructure Evaluation Policy generation Limitations Going Native: Using a Large-Scale Analysis of Android Apps to Create a Practical Native-Code Sandboxing Policy Vitor Monte Afonso 1 , Antonio Bianchi 2

524 views • 34 slides
Practical Programming on Android Introduction Koert Zeilstra is freelance software developer,

Practical Programming on Android Introduction Koert Zeilstra is freelance software developer,

Practical Programming on Android Introduction Koert Zeilstra is freelance software developer, used C++, OOP, Java, Swing, Struts, EJB, Spring, JSF, Android Palm Pilot long battery life Palm V - Introduction JavaOne 1999, KVM

663 views • 19 slides
Planning Enforcement Adrian Duffield Head of Planning 1 The planning process Enforcement

Planning Enforcement Adrian Duffield Head of Planning 1 The planning process Enforcement

Planning Enforcement Adrian Duffield Head of Planning 1 The planning process Enforcement Policy Applications 2 National Planning Policy NPPF Paragraph 207 Important in maintaining public confidence in planning system Discretionary

171 views • 14 slides
Enforcement Policy Presented by Cris Carrigan David Boyers, &amp; Dr. Matthew Buffleben State

Enforcement Policy Presented by Cris Carrigan David Boyers, &amp; Dr. Matthew Buffleben State

2017 Update: Enforcement Policy Presented by Cris Carrigan David Boyers, &amp; Dr. Matthew Buffleben State Water Resources Control Board Office of Enforcement February 7, 2017 Board Meeting Item 5 2017 Enforcement Policy Highlights

570 views • 20 slides
Developers Google Maps Android API v2 Make your Android app pop with Google Maps Android API v2

Developers Google Maps Android API v2 Make your Android app pop with Google Maps Android API v2

Developers Google Maps Android API v2 Make your Android app pop with Google Maps Android API v2 Anthony Morris Jan-Felix Schmakeit Tech Lead, Android Maps API Android Developer Relations Code, Slides, Worksheet: http://goo.gl/MfY67 Welcome!

687 views • 49 slides
RESTITUTION ENFORCEMENT A Practical Approach to Assure Restitution to Victims The Honorable

RESTITUTION ENFORCEMENT A Practical Approach to Assure Restitution to Victims The Honorable

RESTITUTION ENFORCEMENT A Practical Approach to Assure Restitution to Victims The Honorable Roland J. Steinle III Dan Levey Kim Knox Im Impor ortance tance of of Rest estit ituti ution on for or Vic icti tims ms NATIONAL HISTORY

455 views • 33 slides
Practical Experiences on NFC Relay Attacks with Android Virtual Pickpocketing Revisited e Vila

Practical Experiences on NFC Relay Attacks with Android Virtual Pickpocketing Revisited e Vila

Practical Experiences on NFC Relay Attacks with Android Virtual Pickpocketing Revisited e Vila 1 and Ricardo J. Rodr Jos guez 2 1 DIIS, University of Zaragoza, Spain 2 Research Institute of Applied Sciences in Cybersecurity, University

337 views • 17 slides
FPPC Enforcement Retrospective &amp; Prospective Policy Meeting November 22, 2019 2019

FPPC Enforcement Retrospective &amp; Prospective Policy Meeting November 22, 2019 2019

FPPC Enforcement Retrospective &amp; Prospective Policy Meeting November 22, 2019 2019 Enforcement Trends Resource Allocation 2019/2020 Penalties 2019/2020 Streamline/WL Discussion Program Roadblocks to Enforcement Legislative Proposals

633 views • 39 slides
Deriving Enforcement Mechanisms from H. Janicke, et.al. Policies Motivation ITL Policy Rules

Deriving Enforcement Mechanisms from H. Janicke, et.al. Policies Motivation ITL Policy Rules

Deriving Enforcement Mechanisms from Policies Deriving Enforcement Mechanisms from H. Janicke, et.al. Policies Motivation ITL Policy Rules Helge Janicke, Antonio Cau, Fran cois Siewe, Enforcement Hussein Zedan Summary Software

550 views • 16 slides
Introduction to Android Development What is Android? Android is the customizable, easy to

Introduction to Android Development What is Android? Android is the customizable, easy to

Introduction to Android Development What is Android? Android is the customizable, easy to use operating system that powers more than a billion devices across the globe - from phones and tablets to watches, TV, cars and more to come.

464 views • 21 slides
Workshop H Practical Tips &amp; Trends in RCRA Hazardous Waste Management and Enforcement

Workshop H Practical Tips &amp; Trends in RCRA Hazardous Waste Management and Enforcement

Workshop H Practical Tips &amp; Trends in RCRA Hazardous Waste Management and Enforcement Tuesday, March 26, 2019 11:15 a.m. to 12:30 p.m. Biographical Information Timothy W. Ling, P.E., Corporate Environmental Director, Plaskolite, LLC. P.O.

807 views • 64 slides
Workshop B Practical Tips &amp; Trends in RCRA Hazardous Waste Management and Enforcement

Workshop B Practical Tips &amp; Trends in RCRA Hazardous Waste Management and Enforcement

Workshop B Practical Tips &amp; Trends in RCRA Hazardous Waste Management and Enforcement Tuesday, March 24, 2020 9:45 a.m. to 11 a.m . Biographical Information Tim W. McDaniel, CIH, CSP, EHS Manager Navistar, Inc., 6125 Urbana Rd.,

1.01k views • 63 slides
Software Engineering Large Practical Debugging and Testing Android apps Stephen Gilmore School

Software Engineering Large Practical Debugging and Testing Android apps Stephen Gilmore School

Software Engineering Large Practical Debugging and Testing Android apps Stephen Gilmore School of Informatics, University of Edinburgh November 13th, 2013 Stephen Gilmore Software Engineering Large Practical News This is the last SELP

639 views • 30 slides
The Irish Waste Management Conference Waste policy and enforcement: update Alison Fanagan 28

The Irish Waste Management Conference Waste policy and enforcement: update Alison Fanagan 28

The Irish Waste Management Conference Waste policy and enforcement: update Alison Fanagan 28 November 2019 M-47824253-1 Introduction Waste policy Waste enforcement 2012 A resource opportunity: up for review What are Irelands

400 views • 28 slides
Compensation &amp; Classification Study for Wicomico County Public Schools Summary Review of MAG

Compensation &amp; Classification Study for Wicomico County Public Schools Summary Review of MAG

Compensation &amp; Classification Study for Wicomico County Public Schools Summary Review of MAG International Report Vince Pavic, Director of Human Resources and Employee Relations Project Description WCPS contracted with Management Advisory

249 views • 9 slides
Natural Gas Pipelines and New Jersey Patty Cronheim ReThink Energy NJ Outreach Coordinator 1

Natural Gas Pipelines and New Jersey Patty Cronheim ReThink Energy NJ Outreach Coordinator 1

Natural Gas Pipelines and New Jersey Patty Cronheim ReThink Energy NJ Outreach Coordinator 1 Campaign Mission We empower New Jersey citizens by informing them about the need for a swift transition to clean, efficient and renewable energy,

596 views • 22 slides
Land Securities Anna Chapman, Sustainable Business Adviser Land Securities key facts

Land Securities Anna Chapman, Sustainable Business Adviser Land Securities key facts

Land Securities Anna Chapman, Sustainable Business Adviser Land Securities key facts Founded 1944 Largest UK Real Estate Investment Trust (by market capitalisation) 11.45bn portfolio 6.1bn London Portfolio 5.35bn

251 views • 5 slides
Cary Cox Agenda Overview Cary Cox Assistant Secretary for Marketing &amp; Communications

Cary Cox Agenda Overview Cary Cox Assistant Secretary for Marketing &amp; Communications

Welcome Cary Cox Agenda Overview Cary Cox Assistant Secretary for Marketing &amp; Communications Crisis Communications Michele Walker Public Information Officer Social Media Kaytee Smith Digital Marketing Specialist Fundraising Kimberly

448 views • 20 slides
Committee Meeting Fee By-law Update November 6, 2012 1 Agenda Introduction Fee Model

Committee Meeting Fee By-law Update November 6, 2012 1 Agenda Introduction Fee Model

Development Services Committee Meeting Fee By-law Update November 6, 2012 1 Agenda Introduction Fee Model Building Permit Fees Development Fees Reserve Balances Summary 2 Introduction The costs for the Building

412 views • 14 slides
The Treatment of Solar Electricity in Renewables Portfolio Standards Ryan H. Wiser Lawrence

The Treatment of Solar Electricity in Renewables Portfolio Standards Ryan H. Wiser Lawrence

The Treatment of Solar Electricity in Renewables Portfolio Standards Ryan H. Wiser Lawrence Berkeley National Laboratory RHWiser@lbl.gov (510.486.5474) Prepared for the U.S. Department of Energy April 2007 Environmental Energy Technologies

687 views • 24 slides
Energy Savings through Site Renewal in an HSPA/LTE Network Evolution Scenario Gilbert Micallef (1)

Energy Savings through Site Renewal in an HSPA/LTE Network Evolution Scenario Gilbert Micallef (1)

Energy Savings through Site Renewal in an HSPA/LTE Network Evolution Scenario Gilbert Micallef (1) Preben Mogensen (1,2) , Hans-Otto Scheck (3) , (1) Aalborg University, (2) Nokia Siemens Networks, (3) Nokia Siemens Networks, Aalborg, Denmark.

247 views • 5 slides
How will the Amending WIC Act affect you? Information session Water Licensing and Compliance 9

How will the Amending WIC Act affect you? Information session Water Licensing and Compliance 9

How will the Amending WIC Act affect you? Information session Water Licensing and Compliance 9 October 2017 Opening remarks Narelle Berry, Director, Water Licensing and Compliance 2 What is this afternoon about? What does the new regulatory

519 views • 36 slides

More recommend