ReDroid: Prioritizing data flows and sinks for app security transformation

Ke Tian, Gang Tan, Danfeng Daphne Yao, Barbara G. Ryder

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Scopus citations

Abstract

Security transformation is to transfer applications to meet security guarantees. How to prioritize Android apps and fnd suitable transformation options is a challenging problem. Typical real-world apps have a large number of sensitive flows and sinks. Thus, security analysts need to prioritize these flows and data sinks according to their risks, i.e., flow ranking and sink ranking. We present an efcient graph-algorithm based risk metric for prioritizing risky flows and sinks in Android grayware apps. Our risk prioritization produces orderings that are consistent with published security reports. We demonstrate a new automatic app transformation framework that utilizes the above prioritization technique to improve app security. The framework provides more rewriting options than the state-of-art solutions by supporting flow- and sink-based security checks. Our prototype ReDroid is designed for security analysts who manage organizational app repositories and customize thirdparty apps to satisfy organization imposed security requirements. Our framework enables application transformation for both benchmark apps and real-world grayware to strengthen their security guarantees.

Original languageEnglish (US)
Title of host publicationFEAST 2017 - Proceedings of the 2017 Workshop on Forming an Ecosystem Around Software Transformation, co-located with CCS 2017
PublisherAssociation for Computing Machinery, Inc
Pages35-41
Number of pages7
ISBN (Electronic)9781450353953
DOIs
StatePublished - Nov 3 2017
Event2nd Workshop on Forming an Ecosystem Around Software Transformation, FEAST 2017 - Dallas, United States
Duration: Nov 3 2017 → …

Publication series

NameFEAST 2017 - Proceedings of the 2017 Workshop on Forming an Ecosystem Around Software Transformation, co-located with CCS 2017

Other

Other2nd Workshop on Forming an Ecosystem Around Software Transformation, FEAST 2017
CountryUnited States
CityDallas
Period11/3/17 → …

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications
  • Electrical and Electronic Engineering
  • Safety, Risk, Reliability and Quality

Fingerprint Dive into the research topics of 'ReDroid: Prioritizing data flows and sinks for app security transformation'. Together they form a unique fingerprint.

  • Cite this

    Tian, K., Tan, G., Yao, D. D., & Ryder, B. G. (2017). ReDroid: Prioritizing data flows and sinks for app security transformation. In FEAST 2017 - Proceedings of the 2017 Workshop on Forming an Ecosystem Around Software Transformation, co-located with CCS 2017 (pp. 35-41). (FEAST 2017 - Proceedings of the 2017 Workshop on Forming an Ecosystem Around Software Transformation, co-located with CCS 2017). Association for Computing Machinery, Inc. https://doi.org/10.1145/3141235.3141239