Efficient resolution of security-sensitive values in Android using abstract interpretation
Author(s)
Petters, Dmitrij
DownloadFull printable version (3.709Mb)
Alternative title
Efficient abstract interpretation framework for resolving security-sensitive values and information flow sources in Android
Other Contributors
Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science.
Advisor
Martin C. Rinard.
Terms of use
Metadata
Show full item recordAbstract
In this thesis I present a design for an efficient and sound abstract interpretation-based Value Analysis which calculates field values of security-relevant Android API class instances. The analysis is an important component of DroidSafe, an Android malware detection system designed to prove important properties of sensitive program behaviors before the programs appear in an application marketplace. The resolved program values provide important context for other DroidSafe analyses and the generated application summary, improving their precision. This in turn helps a trusted analyst avoid false positives and determine whether a particular application is malicious in a shorter amount of time.
Description
Thesis: M. Eng., Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science, 2014. Cataloged from PDF version of thesis. Includes bibliographical references (pages 69-71).
Date issued
2014Department
Massachusetts Institute of Technology. Department of Electrical Engineering and Computer SciencePublisher
Massachusetts Institute of Technology
Keywords
Electrical Engineering and Computer Science.