A Security Sandbox Approach of Android Based on Hook Mechanism

Xin Jiang; Mingzhe Liu; Kun Yang; Yanhua Liu; Ruili Wang

doi:10.1155/2018/9856537

A Security Sandbox Approach of Android Based on Hook Mechanism

Xin Jiang, Mingzhe Liu, Kun Yang, Yanhua Liu, Ruili Wang

Research output: Journal Publication › Article › peer-review

5 Citations (Scopus)

Abstract

As the most widely applied mobile operating system for smartphones, Android is challenged by fast growing security problems, which are caused by malicious applications. Behaviors of malicious applications have become more and more inconspicuous, which largely increase the difficulties of security detection. This paper provides a new security sandbox approach of Android based on hook mechanism, to further enrich Android malware detection technologies. This new sandbox monitors the behaviors of target application by using a process hook-based dynamic tracking method during its running period. Compared to existing techniques, (1) this approach can create a virtual space where apk can be installed, run, and uninstalled, and it is isolated from the outside and (2) a risk assessment approach based on behavior analysis is given so that users can obtain an explicit risk prognosis for an application to improve their safety. Tests on malware and normal application samples verify this new security sandbox.

Original language	English
Article number	9856537
Journal	Security and Communication Networks
Volume	2018
DOIs	https://doi.org/10.1155/2018/9856537
Publication status	Published - 2018
Externally published	Yes

ASJC Scopus subject areas

Information Systems
Computer Networks and Communications

Access to Document

10.1155/2018/9856537

Cite this

@article{168ca9fa5ecc47bab7dd04ec4dcfb50a,

title = "A Security Sandbox Approach of Android Based on Hook Mechanism",

abstract = "As the most widely applied mobile operating system for smartphones, Android is challenged by fast growing security problems, which are caused by malicious applications. Behaviors of malicious applications have become more and more inconspicuous, which largely increase the difficulties of security detection. This paper provides a new security sandbox approach of Android based on hook mechanism, to further enrich Android malware detection technologies. This new sandbox monitors the behaviors of target application by using a process hook-based dynamic tracking method during its running period. Compared to existing techniques, (1) this approach can create a virtual space where apk can be installed, run, and uninstalled, and it is isolated from the outside and (2) a risk assessment approach based on behavior analysis is given so that users can obtain an explicit risk prognosis for an application to improve their safety. Tests on malware and normal application samples verify this new security sandbox.",

author = "Xin Jiang and Mingzhe Liu and Kun Yang and Yanhua Liu and Ruili Wang",

note = "Publisher Copyright: {\textcopyright} 2018 Xin Jiang et al.",

year = "2018",

doi = "10.1155/2018/9856537",

language = "English",

volume = "2018",

journal = "Security and Communication Networks",

issn = "1939-0114",

publisher = "Hindawi Limited",

}

TY - JOUR

T1 - A Security Sandbox Approach of Android Based on Hook Mechanism

AU - Jiang, Xin

AU - Liu, Mingzhe

AU - Yang, Kun

AU - Liu, Yanhua

AU - Wang, Ruili

PY - 2018

Y1 - 2018

N2 - As the most widely applied mobile operating system for smartphones, Android is challenged by fast growing security problems, which are caused by malicious applications. Behaviors of malicious applications have become more and more inconspicuous, which largely increase the difficulties of security detection. This paper provides a new security sandbox approach of Android based on hook mechanism, to further enrich Android malware detection technologies. This new sandbox monitors the behaviors of target application by using a process hook-based dynamic tracking method during its running period. Compared to existing techniques, (1) this approach can create a virtual space where apk can be installed, run, and uninstalled, and it is isolated from the outside and (2) a risk assessment approach based on behavior analysis is given so that users can obtain an explicit risk prognosis for an application to improve their safety. Tests on malware and normal application samples verify this new security sandbox.

AB - As the most widely applied mobile operating system for smartphones, Android is challenged by fast growing security problems, which are caused by malicious applications. Behaviors of malicious applications have become more and more inconspicuous, which largely increase the difficulties of security detection. This paper provides a new security sandbox approach of Android based on hook mechanism, to further enrich Android malware detection technologies. This new sandbox monitors the behaviors of target application by using a process hook-based dynamic tracking method during its running period. Compared to existing techniques, (1) this approach can create a virtual space where apk can be installed, run, and uninstalled, and it is isolated from the outside and (2) a risk assessment approach based on behavior analysis is given so that users can obtain an explicit risk prognosis for an application to improve their safety. Tests on malware and normal application samples verify this new security sandbox.

UR - http://www.scopus.com/inward/record.url?scp=85051033419&partnerID=8YFLogxK

U2 - 10.1155/2018/9856537

DO - 10.1155/2018/9856537

M3 - Article

AN - SCOPUS:85051033419

SN - 1939-0114

VL - 2018

JO - Security and Communication Networks

JF - Security and Communication Networks

M1 - 9856537

ER -

A Security Sandbox Approach of Android Based on Hook Mechanism

Abstract

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this