Efficient resolution of security-sensitive values in Android using abstract interpretation

Petters, Dmitrij

Author(s)

Petters, Dmitrij

DownloadFull printable version (3.709Mb)

Alternative title

Efficient abstract interpretation framework for resolving security-sensitive values and information flow sources in Android

Other Contributors

Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science.

Advisor

Martin C. Rinard.

Terms of use

M.I.T. theses are protected by copyright. They may be viewed from this source for any purpose, but reproduction or distribution in any format is prohibited without written permission. See provided URL for inquiries about permission. http://dspace.mit.edu/handle/1721.1/7582

Metadata

Show full item record

Abstract

In this thesis I present a design for an efficient and sound abstract interpretation-based Value Analysis which calculates field values of security-relevant Android API class instances. The analysis is an important component of DroidSafe, an Android malware detection system designed to prove important properties of sensitive program behaviors before the programs appear in an application marketplace. The resolved program values provide important context for other DroidSafe analyses and the generated application summary, improving their precision. This in turn helps a trusted analyst avoid false positives and determine whether a particular application is malicious in a shorter amount of time.

Description

Thesis: M. Eng., Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science, 2014.

Cataloged from PDF version of thesis.

Includes bibliographical references (pages 69-71).

Date issued

2014

URI

http://hdl.handle.net/1721.1/91859

Department

Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science

Publisher

Massachusetts Institute of Technology

Keywords

Electrical Engineering and Computer Science.

Collections

Graduate Theses