Towards a threat assessment framework for apps collusion

Harsha Kumara Kalutarage; Hoang Nga Nguyen; Siraj Ahmed Shaikh

doi:10.1007/s11235-017-0296-1

Towards a threat assessment framework for apps collusion

Harsha Kumara Kalutarage^*, Hoang Nga Nguyen, Siraj Ahmed Shaikh

^*Corresponding author for this work

School of Electronics, Electrical Engineering and Computer Science

Research output: Contribution to journal › Article › peer-review

12 Citations (Scopus)

293 Downloads (Pure)

Abstract

App collusion refers to two or more apps working together to achieve a malicious goal that they otherwise would not be able to achieve individually. The permissions based security model of Android does not address this threat as it is rather limited to mitigating risks of individual apps. This paper presents a technique for quantifying the collusion threat, essentially the first step towards assessing the collusion risk. The proposed method is useful in finding the collusion candidate of interest which is critical given the high volume of Android apps available. We present our empirical analysis using a classified corpus of over 29,000 Android apps provided by Intel Security^TM.

Original language	English
Number of pages	14
Journal	Telecommunication Systems
Early online date	07 Mar 2017
DOIs	https://doi.org/10.1007/s11235-017-0296-1
Publication status	Early online date - 07 Mar 2017

Access to Document

10.1007/s11235-017-0296-1Licence: CC BY

Towards a threat assessment framework for apps collusion
© 2017 The Authors.This article is distributed under the terms of the Creative Commons Attribution 4.0 International License (http://creativecommons.org/licenses/by/4.0/), which permits unrestricted use, distribution, and reproduction in any medium, provided you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license, and indicate if changes were made.
Final published version, 1.17 MBLicence: CC BY

Cite this

@article{4e9d501b3c8140178fcfe53f29a76c49,

title = "Towards a threat assessment framework for apps collusion",

abstract = "App collusion refers to two or more apps working together to achieve a malicious goal that they otherwise would not be able to achieve individually. The permissions based security model of Android does not address this threat as it is rather limited to mitigating risks of individual apps. This paper presents a technique for quantifying the collusion threat, essentially the first step towards assessing the collusion risk. The proposed method is useful in finding the collusion candidate of interest which is critical given the high volume of Android apps available. We present our empirical analysis using a classified corpus of over 29,000 Android apps provided by Intel SecurityTM.",

author = "Kalutarage, {Harsha Kumara} and Nguyen, {Hoang Nga} and Shaikh, {Siraj Ahmed}",

year = "2017",

month = mar,

day = "7",

doi = "10.1007/s11235-017-0296-1",

language = "English",

journal = "Telecommunication Systems",

issn = "1018-4864",

publisher = "Springer Netherlands",

}

TY - JOUR

T1 - Towards a threat assessment framework for apps collusion

AU - Kalutarage, Harsha Kumara

AU - Nguyen, Hoang Nga

AU - Shaikh, Siraj Ahmed

PY - 2017/3/7

Y1 - 2017/3/7

N2 - App collusion refers to two or more apps working together to achieve a malicious goal that they otherwise would not be able to achieve individually. The permissions based security model of Android does not address this threat as it is rather limited to mitigating risks of individual apps. This paper presents a technique for quantifying the collusion threat, essentially the first step towards assessing the collusion risk. The proposed method is useful in finding the collusion candidate of interest which is critical given the high volume of Android apps available. We present our empirical analysis using a classified corpus of over 29,000 Android apps provided by Intel SecurityTM.

AB - App collusion refers to two or more apps working together to achieve a malicious goal that they otherwise would not be able to achieve individually. The permissions based security model of Android does not address this threat as it is rather limited to mitigating risks of individual apps. This paper presents a technique for quantifying the collusion threat, essentially the first step towards assessing the collusion risk. The proposed method is useful in finding the collusion candidate of interest which is critical given the high volume of Android apps available. We present our empirical analysis using a classified corpus of over 29,000 Android apps provided by Intel SecurityTM.

UR - http://www.scopus.com/inward/record.url?scp=85014575107&partnerID=8YFLogxK

U2 - 10.1007/s11235-017-0296-1

DO - 10.1007/s11235-017-0296-1

M3 - Article

SN - 1018-4864

JO - Telecommunication Systems

JF - Telecommunication Systems

ER -

Towards a threat assessment framework for apps collusion

Abstract

Access to Document

Other files and links

Fingerprint

Cite this