Ghost Installer in the Shadow: Security Analysis of App Installation on Android

@article{Lee2017GhostII,
  title={Ghost Installer in the Shadow: Security Analysis of App Installation on Android},
  author={Yeonjoon Lee and Tongxin Li and Nan Zhang and Soteris Demetriou and Mingming Zha and Xiaofeng Wang and Kai Chen and Xiao-yong Zhou and Xinhui Han and Michael Grace},
  journal={2017 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN)},
  year={2017},
  pages={403-414}
}
Android allows developers to build apps with app installation functionality themselves with minimal restriction and support like any other functionalities. Given the critical importance of app installation, the security implications of the approach can be significant. This paper reports the first systematic study on this issue, focusing on the security guarantees of different steps of the App Installation Transaction (AIT). We demonstrate the serious consequences of leaving AIT development to… CONTINUE READING

Figures, Tables, and Topics from this paper.

Explore Further: Topics Discussed in This Paper

Citations

Publications citing this paper.
SHOWING 1-2 OF 2 CITATIONS

References

Publications referenced by this paper.
SHOWING 1-10 OF 23 REFERENCES

Certifigate: Front door access to pwning millions of androids

A. Bashan, O. Bobrov
  • 2015
VIEW 2 EXCERPTS

Hare Hunting in the Wild Android: A Study on the Threat of Hanging Attribute References

  • ACM Conference on Computer and Communications Security
  • 2015
VIEW 1 EXCERPT

AppIntent: analyzing sensitive data transmission in android for privacy leakage detection

  • ACM Conference on Computer and Communications Security
  • 2013
VIEW 1 EXCERPT

Similar Papers

Loading similar papers…