{FlowCog}: Context-aware semantics extraction and analysis of information flow leaks in android apps
27th USENIX Security Symposium (USENIX Security 18), 2018•usenix.org
Android apps having access to private information may be legitimate, depending on whether
the app provides users enough semantics to justify the access. Existing works analyzing app
semantics are coarse-grained, staying on the app-level. That is, they can only identify
whether an app, as a whole, should request a certain permission, but cannot answer
whether a specific app behavior under certain runtime context, such as an information flow,
is correctly justified.
the app provides users enough semantics to justify the access. Existing works analyzing app
semantics are coarse-grained, staying on the app-level. That is, they can only identify
whether an app, as a whole, should request a certain permission, but cannot answer
whether a specific app behavior under certain runtime context, such as an information flow,
is correctly justified.
Abstract
Android apps having access to private information may be legitimate, depending on whether the app provides users enough semantics to justify the access. Existing works analyzing app semantics are coarse-grained, staying on the app-level. That is, they can only identify whether an app, as a whole, should request a certain permission, but cannot answer whether a specific app behavior under certain runtime context, such as an information flow, is correctly justified.
usenix.org
Показан е най-добрият резултат за това търсене. Показване на всички резултати