研究生: 柯儒
論文名稱: 基於檢查意圖權限之Android多層次共謀型惡意程式漏洞偵測
Vulnerability Detection of Multiple Layer Colluding Application through Intent Privilege Checking
指導教授: 李漢銘
Hahn-Ming Lee
口試委員: 鄭博仁
Albert B. Jeng
Shin-Ming Cheng
Feng-Tse Lin
Hong-Yuan Liao
學位類別: 碩士
系所名稱: 電資學院 - 資訊工程系
Department of Computer Science and Information Engineering
論文出版年: 2014
畢業學年度: 102
語文別: 英文
論文頁數: 74
中文關鍵詞: 手機安全Android資安共謀越權漏洞偵測
外文關鍵詞: mobile, collusion, privilege, Intent
在眾多的手機作業系統中,Android 是最受歡迎的手機作業系統。在 2014 年的 Google I/O 開發者會議中,Google 宣稱在 2014 年六月,已經有超過 10 憶的使 用者在使用 Android 系統。然而,Android 系統允許安裝第三方的手機應用程式, 進而導致手機惡意程式數量的增長。在 Android 中,主要是透過內部元件通訊 當作通訊機制 (Inter-Component Communication)。手機應用程式若是不當的使 用 ICC,則可能遭受到越權攻擊。一個手機惡意程式可以透過 ICC 傳送個人資 料給其它的手機應用程式或是網路。因此,在本論文中,我們提出一個工具叫做 Multiple Layer Collusion Tracker,簡稱 MLC Tracker。MLC Tracker 檢查意圖物 件 (Intent) 特權,識別功能洩漏與代理洩漏,以預防多層次共謀型攻擊。

Among the various smartphone operating systems, Android is highly popular the mobile operating system. In Google I/O 2014 developer conference [22], Google announces that there are 1 billion active Android users on June 2014. However, Android allows installing third-party applications that may increase the spread of Android malware. The inter-component communication (ICC) is a communication mechanism in Android. The applications, improperly use ICC for communication that lead to privilege escalation attacks A malicious application can transmit per- sonal information to the internet or another malicious application. Therefore, in this thesis, we propose Multiple Layer Collusion Tracker that is named as MLC Tracker. MLC Tracker checks Intent privilege to identify vulnerabilities of deputy or capability for preventing multiple layer collusion attack.

中文摘要...................................... I ABSTRACT .................................... III ACKNOWLEDGEMENT ............................. V TableofContents.................................. VI ListofFigures ................................... X List of Tables . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . XII INTRODUCTION ............................... 1 1.1 Motivation................................. 3 1.2 ChallengesandGoals........................... 4 1.3 Contributions............................... 4 1.4 TheOutlineofThesis .......................... 5 2 BACKGROUND ................................ 6 2.1 Android.................................. 6 2.1.1 Background............................ 6 2.1.2 InterComponentCommunication ............... 7 2.1.3 Intent ............................... 9 2.2 PotentialPermissionsofAPIsandURI................. 10 2.2.1 Permission ............................ 10 2.2.2 APIs................................ 12 2.2.3 URI................................ 12 2.2.4 PermissionsMappingAPIsandURIs . . . . . . . . . . . . . . 13 2.3 PrivilegeEscalationAttacks....................... 14 2.3.1 KernelExploitAttacks...................... 15 2.3.2 ConfusedDeputyAttacks .................... 15 2.3.3 CollusionAttacks......................... 16 2.3.4 MultipleLayerCollusionAttacks ................ 17 2.4 AndroidSecurityExtensionsandTools................. 18 2.4.1 New Android Framework for Preventing Privilege Escalation Attacks .............................. 20 2.4.2 CapabilityLeak.......................... 20 2.5 CurrentProblem ............................. 21 3 MLCTracker .................................. 23 3.1 APKConfigurationParser........................ 24 3.1.1 EntryPoint............................ 24 3.1.2 Uses-Permission.......................... 24 3.1.3 ExportedComponent ...................... 25 3.2 CorrelationStructureConstructor.................... 25 3.2.1 CapabilityLeak.......................... 25 3.2.2 InstructionExtraction ...................... 27 3.2.3 StructureGeneration....................... 28 3.3 PotentialPathMatcher ......................... 28 3.3.1 PotentialDeputyPath...................... 29 3.3.2 PotentialCapabilityPath .................... 29 3.3.3 TheCheckingStrategy...................... 30 3.3.4 TheCheckingAlgorithm..................... 31 3.3.5 Decision Tree of Deputy Leak for Deputy Path . . . . . . . . 32 3.4 APIsandURIMappingPermissions .................. 34 3.4.1 APIsMappingPermissions ................... 35 3.4.2 URIMappingPermissions.................... 35 4 Experiment ................................... 37 4.1 EnvironmentandDataset ........................ 37 4.1.1 Dataset .............................. 37 4.1.2 Environment ........................... 38 4.2 ExperimentResults............................ 38 4.2.1 CapabilityLeaksFound ..................... 39 4.2.2 DeputyLeaksFound....................... 40 4.3 EvaluationMetrics ............................ 42 4.4 EffectivenessAnalysis .......................... 43 4.5 SampleAttack .............................. 44 4.6 Discussion................................. 45 4.6.1 Limitation............................. 46 4.6.2 Discussion............................. 46 5 CONCLUSION ................................. 47 5.1 Conclusion................................. 47 5.2 FurtherWork............................... 47 References...................................... 49

