Top

Published in:

2019 | OriginalPaper | Chapter

Analyzing Use of High Privileges on Android: An Empirical Case Study of Screenshot and Screen Recording Applications

Authors : Mark H. Meng, Guangdong Bai, Joseph K. Liu, Xiapu Luo, Yu Wang

Published in: Information Security and Cryptology

Publisher: Springer International Publishing

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

The number of Android smartphone and tablet users has experienced a rapid growth in the past few years and it raises users’ awareness on privacy and security issues of their mobile devices. There are lots of users rooting their Android devices for some useful functions, which are not originally provided to developers and users, such as taking screenshot and screen recording. However, after observing the danger of rooting devices, the developers begin to look for non-root alternatives to implement those functions. Android Debug Bridge (ADB) workaround is one of the best known non-root alternatives to help app gain a higher privilege on Android. It used to be considered as a secure practice until some cases of ADB privilege leakage have been found. In this paper, we propose an approach to identify the potential privilege leakage in Android apps that using ADB workaround. We apply our approach to analyze three real-world apps that are downloaded from Google Play Store. We then present a general methodology to conduct exploitation on those apps using ADB workaround. Based on our study, we suggest some mitigation techniques to help developers create their apps that not only satisfy users’ needs but also protect users’ privacy from similar attacks in future.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

previous chapter Chord: Thwarting Relay Attacks Among Near Field Communications

next chapter Blockchain-Based Privacy Preserving Deep Learning

The source code of our exploitation could be downloaded from http://mark-h-meng.github.io/attachments/analysing-use-of-high-privileges/source_code_folder.zip.

The full directory path is /data/data/com.edwardkim.android.screenshotitfullnoro ot/temp.

Android screenshot library is available at https://code.google.com/archive/p/android-screenshot-library/downloads.

DotPeek is available on https://www.jetbrains.com/decompiler/.

Bai, G., et al.: All your sessions are belong to us: investigating authenticator leakage through backup channels on android. In: Proceedings of the 20th International Conference on Engineering of Complex Computer Systems (ICECCS) (2015)

Batyuk, L., Herpich, M., Camtepe, S.A., Raddatz, K., Schmidt, A., Albayrak, S.: Using static analysis for automatic assessment and mitigation of unwanted and malicious activities within android applications. In: 2011 6th International Conference on Malicious and Unwanted Software, pp. 66–72, October 2011

Bishop, M.: Unix security: threats and solutions (1996)

Bugiel, S., Davi, L., Dmitrienko, A., Fischer, T., Sadeghi, A.R., Shastry, B.: Towards taming privilege-escalation attacks on android. In: NDSS. vol. 17, p. 19. Citeseer (2012)

Chen, H., Li, N., Enck, W., Aafer, Y., Zhang, X.: Analysis of seandroid policies: combining MAC and DAC in android. In: Proceedings of the 33rd Annual Computer Security Applications Conference, pp. 553–565. ACM (2017)

Chris, H.: The case against root: why android devices don’t come rooted (2012). https://www.howtogeek.com/132115/the-case-against-root-why-android-devices-dont-come-rooted/

Ferrill, P.: Navigating the android SDK. In: Pro Android Python with SL4A, pp. 57–82. Apress (2011)

Google: \(<\)permission\(>\), Android Developers (2018). http://developer.android.com/guide/topics/manifest/permission-element.html. Accessed 18 Mar 2016

Google: System and kernel security (2018). https://source.android.com/security/overview/kernel-security.html. Accessed 18 Mar 2016

10.

Gordon, W.: How to take a screenshot on android, April 2013. https://www.lifehacker.com.au/2013/04/how-to-take-a-screenshot-on-android/. Accessed 12 July 2018

11.

Hoffman, C.: How-to geek: how to take screenshots on android devices since 4.0, June 2012. http://www.howtogeek.com/121133/how-to-take-screenshots-on-android-devices-since-4.0. Accessed 20 Mar 2016

12.

Kristijan, L.: Over 27.44% users root their phone(s) in order to remove built-in apps, are you one of them? (2014). https://www.androidheadlines.com/2014/11/50-users-root-phones-order-remove-built-apps-one.html

13.

Lin, C.C., Li, H., Zhou, X.Y., Wang, X.: Screenmilker: how to milk your android screen for secrets. In: NDSS (2014)

14.

Lucic, K.: Over 27.44% users root their phone(s) in order to remove built-in apps, are you one of them? November 2014. https://www.androidheadlines.com/2014/11/50-users-root-phones-order-remove-built-apps-one.html. Accessed 14 Mar 2016

15.

Meng, H., Thing, V.L.L., Cheng, Y., Dai, Z., Zhang, L.: A survey of android exploits in the wild. Comput. Secur. 76, 71–91 (2018)CrossRef

16.

Popper, B.: Google announces over 2 billion monthly active devices on Android (2017). https://www.theverge.com/2017/5/17/15654454/android-reaches-2-billion-monthly-active-users. Accessed 01 July 2018

17.

Provos, N., Friedl, M., Honeyman, P.: Preventing privilege escalation. In: USENIX Security, vol. 3 (2003)

18.

Ravenscraft, E.: Rooted vs. unrooted android: your best arguments, July 2014. http://lifehacker.com/rooted-vs-unrooted-android-your-best-arguments-1599101019. Accessed 18 Mar 2016

19.

Shabtai, A., Fledel, Y., Kanonov, U., Elovici, Y., Dolev, S., Glezer, C.: Google android: a comprehensive security assessment. IEEE Secur. Priv. 8(2), 35–44 (2010)CrossRef

20.

StatCounter: Mobile operating system market share worldwide (2018). http://gs.statcounter.com/os-market-share/mobile/worldwide. Accessed 14 Aug 2018

21.

Wang, Y., Rountev, A.: Who changed you?: obfuscator identification for android. In: Proceedings of the 4th International Conference on Mobile Software Engineering and Systems, pp. 154–164. IEEE Press (2017)

22.

Zhang, H., She, D., Qian, Z.: Android root and its providers: a double-edged sword. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 1093–1104. ACM (2015)

23.

Zhang, L., Meng, H., Thing, V.L.L.: Progressive control flow obfuscation for android applications. Region 10 Conference, TENCON 2018 IEEE (2018)

Title: Analyzing Use of High Privileges on Android: An Empirical Case Study of Screenshot and Screen Recording Applications
Authors: Mark H. Meng
Guangdong Bai
Joseph K. Liu
Xiapu Luo
Yu Wang
Publisher: Springer International Publishing
Book: Information Security and Cryptology
Print ISBN: 978-3-030-14233-9

Electronic ISBN: 978-3-030-14234-6

Copyright Year: 2019
DOI: https://doi.org/10.1007/978-3-030-14234-6_19

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner