{"title":"防止Android APP的活动劫持攻击","authors":"Min-Hao Wu, Fu-Hau Hsu, Ting-Cheng Chang, L. Lin","doi":"10.1109/ECBIOS.2019.8807833","DOIUrl":null,"url":null,"abstract":"In recent years, the hijacking vulnerabilities of Android components have been widely discussed, and hijacked Android components have been used to disclose personal information or private data to attackers. Such attacks redirect the Android component's original workflow to malicious code, or even execute malware. We propose an Activity Hijacking Attacks (AHA) scheme that examines the original activity workflow to keep track of every activity in the Android framework. This enables AHA to detect a malicious app that attempts to open an activity in the foreground or whose layout is similar to a login page, i.e., with a text field for account names and passwords. When such activities are detected, our scheme notifies users to be cautious of keying in their credentials for the new activity. Experimental results show that using AHA can prevent attacks designed to steal personal information. Furthermore, our proposed scheme can be easily patched into the existing Android system and has a negligible overhead.","PeriodicalId":165579,"journal":{"name":"2019 IEEE Eurasia Conference on Biomedical Engineering, Healthcare and Sustainability (ECBIOS)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Preventing Activity Hijacking Attacks in Android APP\",\"authors\":\"Min-Hao Wu, Fu-Hau Hsu, Ting-Cheng Chang, L. Lin\",\"doi\":\"10.1109/ECBIOS.2019.8807833\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In recent years, the hijacking vulnerabilities of Android components have been widely discussed, and hijacked Android components have been used to disclose personal information or private data to attackers. Such attacks redirect the Android component's original workflow to malicious code, or even execute malware. We propose an Activity Hijacking Attacks (AHA) scheme that examines the original activity workflow to keep track of every activity in the Android framework. This enables AHA to detect a malicious app that attempts to open an activity in the foreground or whose layout is similar to a login page, i.e., with a text field for account names and passwords. When such activities are detected, our scheme notifies users to be cautious of keying in their credentials for the new activity. Experimental results show that using AHA can prevent attacks designed to steal personal information. Furthermore, our proposed scheme can be easily patched into the existing Android system and has a negligible overhead.\",\"PeriodicalId\":165579,\"journal\":{\"name\":\"2019 IEEE Eurasia Conference on Biomedical Engineering, Healthcare and Sustainability (ECBIOS)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-05-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 IEEE Eurasia Conference on Biomedical Engineering, Healthcare and Sustainability (ECBIOS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ECBIOS.2019.8807833\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 IEEE Eurasia Conference on Biomedical Engineering, Healthcare and Sustainability (ECBIOS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ECBIOS.2019.8807833","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Preventing Activity Hijacking Attacks in Android APP
In recent years, the hijacking vulnerabilities of Android components have been widely discussed, and hijacked Android components have been used to disclose personal information or private data to attackers. Such attacks redirect the Android component's original workflow to malicious code, or even execute malware. We propose an Activity Hijacking Attacks (AHA) scheme that examines the original activity workflow to keep track of every activity in the Android framework. This enables AHA to detect a malicious app that attempts to open an activity in the foreground or whose layout is similar to a login page, i.e., with a text field for account names and passwords. When such activities are detected, our scheme notifies users to be cautious of keying in their credentials for the new activity. Experimental results show that using AHA can prevent attacks designed to steal personal information. Furthermore, our proposed scheme can be easily patched into the existing Android system and has a negligible overhead.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
