Towards a threat assessment framework for apps collusion

Harsha Kumara Kalutarage*, Hoang Nga Nguyen, Siraj Ahmed Shaikh

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

8 Citations (Scopus)
202 Downloads (Pure)

Abstract

App collusion refers to two or more apps working together to achieve a malicious goal that they otherwise would not be able to achieve individually. The permissions based security model of Android does not address this threat as it is rather limited to mitigating risks of individual apps. This paper presents a technique for quantifying the collusion threat, essentially the first step towards assessing the collusion risk. The proposed method is useful in finding the collusion candidate of interest which is critical given the high volume of Android apps available. We present our empirical analysis using a classified corpus of over 29,000 Android apps provided by Intel SecurityTM.

Original languageEnglish
Number of pages14
JournalTelecommunication Systems
Early online date07 Mar 2017
DOIs
Publication statusEarly online date - 07 Mar 2017

Fingerprint Dive into the research topics of 'Towards a threat assessment framework for apps collusion'. Together they form a unique fingerprint.

Cite this