Skip to main content
SpringerLink
Log in

Detecting Control Flow in Smarphones: Combining Static and Dynamic Analyses

  • Conference paper
Cyberspace Safety and Security (CSS 2012)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 7672))

Included in the following conference series:

Abstract

Security in embedded systems such as smartphones requires protection of confidential data and applications. Many of security mechanisms use dynamic taint analysis techniques for tracking information flow in software. But these techniques cannot detect control flows that use conditionals to implicitly transfer information from objects to other objects. In particular, malicious applications can bypass Android system and get privacy sensitive information through control flows. We propose an enhancement of dynamic taint analysis that propagates taint along control dependencies by using the static analysis in embedded system such as Google Android operating system. By using this new approach, it becomes possible to protect sensitive information and detect most types of software exploits without reporting too many false positives.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Android, http://www.android.com/

  2. APPLE, INC.: Apple store downloads top three billion (January 2010), http://www.apple.com/pr/library/2010/01/05Apples-App-Store-Downloads-Top-Three-Billion.html

  3. Beres, Y., Dalton, C.: Dynamic label binding at run-time. In: Proceedings of the 2003 Workshop on New Security Paradigms, pp. 39–46. ACM (2003)

    Google Scholar 

  4. Brown, J., Knight Jr., T.: A minimal trusted computing base for dynamically ensuring secure information flow. Project Aries TM-015 (November 2001)

    Google Scholar 

  5. Cheng, W., Zhao, Q., Yu, B., Hiroshige, S.: Tainttrace: Efficient flow tracing with dynamic binary rewriting. In: Proceedings of the 11th IEEE Symposium on ISCC 2006, pp. 749–754. IEEE (2006)

    Google Scholar 

  6. Chess, B., McGraw, G.: Static analysis for security. IEEE Security & Privacy 2(6), 76–79 (2004)

    Article  Google Scholar 

  7. Denning, D.: A lattice model of secure information flow. Communications of the ACM 19(5), 236–243 (1976)

    Article  MathSciNet  Google Scholar 

  8. Denning, D., Denning, P.: Certification of programs for secure information flow. Communications of the ACM 20(7), 504–513 (1977)

    Article  Google Scholar 

  9. Denning, D.: Secure information flow in computer systems. Ph.D. thesis, Purdue University (1975)

    Google Scholar 

  10. Derek Bruening, Q.Z.: Dynamorio: Dynamic instrumentation tool platform, http://dynamorio.org/

  11. Enck, W., Gilbert, P., Chun, B., Cox, L., Jung, J., McDaniel, P., Sheth, A.: Taintdroid: An information-flow tracking system for realtime privacy monitoring on smartphones. In: Proceedings of the 9th USENIX Conference on Operating Systems Design and Implementation, pp. 1–6. USENIX Association (2010)

    Google Scholar 

  12. Evans, D., Larochelle, D.: Improving security using extensible lightweight static analysis. IEEE Software 19(1), 42–51 (2002)

    Article  Google Scholar 

  13. Fenton, J.: Information protection systems. Ph.D. thesis, University of Cambridge (1973)

    Google Scholar 

  14. Fenton, J.: Memoryless subsystem. Computer Journal 17(2), 143–147 (1974)

    Article  MathSciNet  Google Scholar 

  15. Gat, I., Saal, H.: Memoryless execution: a programmer’s viewpoint. IBM tech. rep. 025, IBM Israeli Scientific Center (1975)

    Google Scholar 

  16. George, L., Viet Triem Tong, V., Mé, L.: Blare tools: A policy-based intrusion detection system automatically set by the security policy. In: Recent Advances in Intrusion Detection, pp. 355–356. Springer (2009)

    Google Scholar 

  17. Haldar, V., Chandra, D., Franz, M.: Dynamic taint propagation for java. In: Proceedings of the 21st Annual Computer Security Applications Conference, pp. 303–311. Citeseer (2005)

    Google Scholar 

  18. Hauser, C., Tronel, F., Reid, J., Fidge, C.: A taint marking approach to confidentiality violation detection. In: Proceedings of the 10th Australasian Information Security Conference (AISC 2012), vol. 125. Australian Computer Society (2012)

    Google Scholar 

  19. Hunt, A., Thomas, D.: Programming ruby: The pragmatic programmer’s guide, vol. 2. Addison-Wesley Professional, New York (2000)

    Google Scholar 

  20. Kang, M., McCamant, S., Poosankam, P., Song, D.: Dta++: Dynamic taint analysis with targeted control-flow propagation. In: Proc. of the 18th Annual Network and Distributed System Security Symp., San Diego, CA (2011)

    Google Scholar 

  21. Landi, W.: Undecidability of static analysis. ACM Letters on Programming Languages and Systems (LOPLAS) 1(4), 323–337 (1992)

    Article  Google Scholar 

  22. Myers, A.: Jflow: Practical mostly-static information flow control. In: Proceedings of the 26th ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, pp. 228–241. ACM (1999)

    Google Scholar 

  23. Nair, S., Simpson, P., Crispo, B., Tanenbaum, A.: A virtual machine based information flow control system for policy enforcement. Electronic Notes in Theoretical Computer Science 197(1), 3–16 (2008)

    Article  Google Scholar 

  24. Nethercote, N., Seward, J.: Valgrind: A program supervision framework. Electronic Notes in Theoretical Computer Science 89(2), 44–66 (2003)

    Article  Google Scholar 

  25. Newsome, J., Song, D.: Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software. Citeseer (2005)

    Google Scholar 

  26. Qin, F., Wang, C., Li, Z., Kim, H., Zhou, Y., Wu, Y.: Lift: A low-overhead practical information flow tracking system for detecting security attacks. In: Proceedings of the 39th Annual IEEE/ACM International Symposium on Microarchitecture, pp. 135–148. IEEE Computer Society (2006)

    Google Scholar 

  27. Sabelfeld, A., Myers, A.: Language-based information-flow security. IEEE Journal on Selected Areas in Communications 21(1), 5–19 (2003)

    Article  Google Scholar 

  28. Shankar, U., Talwar, K., Foster, J., Wagner, D.: Detecting format string vulnerabilities with type qaualifiers. In: Proceedings of the 10th Conference on USENIX Security Symposium, vol. 10, p. 16. USENIX Association (2001)

    Google Scholar 

  29. Song, D., Brumley, D., Yin, H., Caballero, J., Jager, I., Kang, M.G., Liang, Z., Newsome, J., Poosankam, P., Saxena, P.: BitBlaze: A New Approach to Computer Security via Binary Analysis. In: Sekar, R., Pujari, A.K. (eds.) ICISS 2008. LNCS, vol. 5352, pp. 1–25. Springer, Heidelberg (2008)

    Chapter  Google Scholar 

  30. Wall, L., Christiansen, T., Orwant, J.: Programming perl. O’Reilly Media (2000)

    Google Scholar 

  31. Yin, H., Song, D., Egele, M., Kruegel, C., Kirda, E.: Panorama: capturing system-wide information flow for malware detection and analysis. In: Proceedings of the 14th ACM Conference on Computer and Communications Security, pp. 116–127. ACM (2007)

    Google Scholar 

  32. Zhang, X., Edwards, A., Jaeger, T.: Using cqual for static analysis of authorization hook placement. In: Proceedings of the 11th USENIX Security Symposium, pp. 33–48 (2002)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Telecom-Bretagne, 2 Rue de la Châtaigneraie, 35576, Cesson Sévigné, France

    Mariem Graa, Nora Cuppens-Boulahia & Frédéric Cuppens

  2. Telecom-SudParis, 9 Rue Charles Fourier, 91000, Evry, France

    Mariem Graa & Ana Cavalli

Authors
  1. Mariem Graa
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Nora Cuppens-Boulahia
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Frédéric Cuppens
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Ana Cavalli
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. School of Information Technology, Deakin University, 221 Burwood Highway, 3125, Burwood, VIC, Australia

    Yang Xiang  & Wanlei Zhou  & 

  2. Computer Science Department, ETSI Informatica, University of Malaga, Campus de Teatinos, 29170, Malaga, Spain

    Javier Lopez

  3. Ming Hsieh Department of Electrical Engineering, University of Southern California, 3740 McClintock Ave., 90089-2564, Los Angeles, CA, USA

    C.-C. Jay Kuo

Rights and permissions

Reprints and permissions

Copyright information

© 2012 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Graa, M., Cuppens-Boulahia, N., Cuppens, F., Cavalli, A. (2012). Detecting Control Flow in Smarphones: Combining Static and Dynamic Analyses. In: Xiang, Y., Lopez, J., Kuo, CC.J., Zhou, W. (eds) Cyberspace Safety and Security. CSS 2012. Lecture Notes in Computer Science, vol 7672. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-35362-8_4

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-35362-8_4

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-35361-1

  • Online ISBN: 978-3-642-35362-8

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation