On the effectiveness of dynamic taint analysis for protecting against private information leaks on Android-based devices

Golam Sarwar; Olivier Mehani; Roksana Boreli; Mohamed Ali Kaafar

On the effectiveness of dynamic taint analysis for protecting against private information leaks on Android-based devices

Golam Sarwar, Olivier Mehani, Roksana Boreli, Mohamed Ali Kaafar

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

Abstract

We investigate the limitations of using dynamic taint analysis for tracking privacy-sensitive information on Android-based mobile devices. Taint tracking keeps track of data as it propagates through variables, interprocess messages and files, by tagging them with taint marks. A popular taint-tracking system, TaintDroid, uses this approach in Android mobile applications to mark private information, such as device identifiers or user's contacts details, and subsequently issue warnings when this information is misused (e.g., sent to an undesired third party). We present a collection of attacks on Android-based taint tracking. Specifically, we apply generic classes of anti-taint methods in a mobile device environment to circumvent this security technique. We have implemented the presented techniques in an Android application, ScrubDroid. We successfully tested our app with the TaintDroid implementations for Android OS versions 2.3 to 4.1.1, both using the emulator and with real devices. Finally, we evaluate the success rate and time to complete of the presented attacks. We conclude that, although taint tracking may be a valuable tool for software developers, it will not effectively protect sensitive data from the black-box code of a motivated attacker applying any of the presented anti-taint tracking methods.

Original language	English
Title of host publication	SECRYPT 2013
Subtitle of host publication	Proceedings of the 10th International Conference on Security and Cryptography
Editors	Pierangela Samarati
Place of Publication	Piscataway, NJ
Publisher	Institute of Electrical and Electronics Engineers (IEEE)
Pages	461-468
Number of pages	8
ISBN (Electronic)	9789897581311
Publication status	Published - 2013
Externally published	Yes
Event	10th International Conference on Security and Cryptography, SECRYPT 2013 - Part of 10th International Joint Conference on E-Business and Telecommunications, ICETE 2013 - Reykjavik, Iceland Duration: 29 Jul 2013 → 31 Jul 2013

Conference

Conference	10th International Conference on Security and Cryptography, SECRYPT 2013 - Part of 10th International Joint Conference on E-Business and Telecommunications, ICETE 2013
Country/Territory	Iceland
City	Reykjavik
Period	29/07/13 → 31/07/13

Keywords

Android
Anti-taint-analysis
Anti-taintdroid
Dynamic taint analysis
Malware
Privacy

Access to Document

http://ieeexplore.ieee.org/document/7223198/

Cite this

Sarwar, G., Mehani, O., Boreli, R., & Kaafar, M. A. (2013). On the effectiveness of dynamic taint analysis for protecting against private information leaks on Android-based devices. In P. Samarati (Ed.), SECRYPT 2013: Proceedings of the 10th International Conference on Security and Cryptography (pp. 461-468). Institute of Electrical and Electronics Engineers (IEEE). http://ieeexplore.ieee.org/document/7223198/

Sarwar, Golam ; Mehani, Olivier ; Boreli, Roksana et al. / On the effectiveness of dynamic taint analysis for protecting against private information leaks on Android-based devices. SECRYPT 2013: Proceedings of the 10th International Conference on Security and Cryptography. editor / Pierangela Samarati. Piscataway, NJ : Institute of Electrical and Electronics Engineers (IEEE), 2013. pp. 461-468

@inproceedings{cadbf148e47f45eab12a48ea80cfa66d,

title = "On the effectiveness of dynamic taint analysis for protecting against private information leaks on Android-based devices",

abstract = "We investigate the limitations of using dynamic taint analysis for tracking privacy-sensitive information on Android-based mobile devices. Taint tracking keeps track of data as it propagates through variables, interprocess messages and files, by tagging them with taint marks. A popular taint-tracking system, TaintDroid, uses this approach in Android mobile applications to mark private information, such as device identifiers or user's contacts details, and subsequently issue warnings when this information is misused (e.g., sent to an undesired third party). We present a collection of attacks on Android-based taint tracking. Specifically, we apply generic classes of anti-taint methods in a mobile device environment to circumvent this security technique. We have implemented the presented techniques in an Android application, ScrubDroid. We successfully tested our app with the TaintDroid implementations for Android OS versions 2.3 to 4.1.1, both using the emulator and with real devices. Finally, we evaluate the success rate and time to complete of the presented attacks. We conclude that, although taint tracking may be a valuable tool for software developers, it will not effectively protect sensitive data from the black-box code of a motivated attacker applying any of the presented anti-taint tracking methods.",

keywords = "Android, Anti-taint-analysis, Anti-taintdroid, Dynamic taint analysis, Malware, Privacy",

author = "Golam Sarwar and Olivier Mehani and Roksana Boreli and Kaafar, {Mohamed Ali}",

year = "2013",

language = "English",

pages = "461--468",

editor = "Pierangela Samarati",

booktitle = "SECRYPT 2013",

publisher = "Institute of Electrical and Electronics Engineers (IEEE)",

address = "United States",

note = "10th International Conference on Security and Cryptography, SECRYPT 2013 - Part of 10th International Joint Conference on E-Business and Telecommunications, ICETE 2013 ; Conference date: 29-07-2013 Through 31-07-2013",

}

Sarwar, G, Mehani, O, Boreli, R & Kaafar, MA 2013, On the effectiveness of dynamic taint analysis for protecting against private information leaks on Android-based devices. in P Samarati (ed.), SECRYPT 2013: Proceedings of the 10th International Conference on Security and Cryptography. Institute of Electrical and Electronics Engineers (IEEE), Piscataway, NJ, pp. 461-468, 10th International Conference on Security and Cryptography, SECRYPT 2013 - Part of 10th International Joint Conference on E-Business and Telecommunications, ICETE 2013, Reykjavik, Iceland, 29/07/13. <http://ieeexplore.ieee.org/document/7223198/>

On the effectiveness of dynamic taint analysis for protecting against private information leaks on Android-based devices. / Sarwar, Golam; Mehani, Olivier; Boreli, Roksana et al.
SECRYPT 2013: Proceedings of the 10th International Conference on Security and Cryptography. ed. / Pierangela Samarati. Piscataway, NJ: Institute of Electrical and Electronics Engineers (IEEE), 2013. p. 461-468.

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - On the effectiveness of dynamic taint analysis for protecting against private information leaks on Android-based devices

AU - Sarwar, Golam

AU - Mehani, Olivier

AU - Boreli, Roksana

AU - Kaafar, Mohamed Ali

PY - 2013

Y1 - 2013

N2 - We investigate the limitations of using dynamic taint analysis for tracking privacy-sensitive information on Android-based mobile devices. Taint tracking keeps track of data as it propagates through variables, interprocess messages and files, by tagging them with taint marks. A popular taint-tracking system, TaintDroid, uses this approach in Android mobile applications to mark private information, such as device identifiers or user's contacts details, and subsequently issue warnings when this information is misused (e.g., sent to an undesired third party). We present a collection of attacks on Android-based taint tracking. Specifically, we apply generic classes of anti-taint methods in a mobile device environment to circumvent this security technique. We have implemented the presented techniques in an Android application, ScrubDroid. We successfully tested our app with the TaintDroid implementations for Android OS versions 2.3 to 4.1.1, both using the emulator and with real devices. Finally, we evaluate the success rate and time to complete of the presented attacks. We conclude that, although taint tracking may be a valuable tool for software developers, it will not effectively protect sensitive data from the black-box code of a motivated attacker applying any of the presented anti-taint tracking methods.

AB - We investigate the limitations of using dynamic taint analysis for tracking privacy-sensitive information on Android-based mobile devices. Taint tracking keeps track of data as it propagates through variables, interprocess messages and files, by tagging them with taint marks. A popular taint-tracking system, TaintDroid, uses this approach in Android mobile applications to mark private information, such as device identifiers or user's contacts details, and subsequently issue warnings when this information is misused (e.g., sent to an undesired third party). We present a collection of attacks on Android-based taint tracking. Specifically, we apply generic classes of anti-taint methods in a mobile device environment to circumvent this security technique. We have implemented the presented techniques in an Android application, ScrubDroid. We successfully tested our app with the TaintDroid implementations for Android OS versions 2.3 to 4.1.1, both using the emulator and with real devices. Finally, we evaluate the success rate and time to complete of the presented attacks. We conclude that, although taint tracking may be a valuable tool for software developers, it will not effectively protect sensitive data from the black-box code of a motivated attacker applying any of the presented anti-taint tracking methods.

KW - Android

KW - Anti-taint-analysis

KW - Anti-taintdroid

KW - Dynamic taint analysis

KW - Malware

KW - Privacy

UR - http://www.scopus.com/inward/record.url?scp=84887633886&partnerID=8YFLogxK

M3 - Conference proceeding contribution

AN - SCOPUS:84887633886

SP - 461

EP - 468

BT - SECRYPT 2013

A2 - Samarati, Pierangela

PB - Institute of Electrical and Electronics Engineers (IEEE)

CY - Piscataway, NJ

T2 - 10th International Conference on Security and Cryptography, SECRYPT 2013 - Part of 10th International Joint Conference on E-Business and Telecommunications, ICETE 2013

Y2 - 29 July 2013 through 31 July 2013

ER -

On the effectiveness of dynamic taint analysis for protecting against private information leaks on Android-based devices

Abstract

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this