TY - GEN
T1 - Semantics-based repackaging detection for mobile apps
AU - Guan, Quanlong
AU - Huang, Heqing
AU - Luo, Weiqi
AU - Zhu, Sencun
N1 - Funding Information:
We thank the anonymous reviewers for their valuable comments and Dr. Nick Nikiforakis for shepherding our paper. The work of Guan and Luo was supported by the Science and Technology Planning Project of Guangdong Province, China (2014A040401027, 2012A080102007, 2015A030401043). The work of Huang and Zhu was partially supported by NSF CCF-1320605
PY - 2016
Y1 - 2016
N2 - While Android app stores keep growing in size and in number, app repackaging has become a major threat to the health of the mobile ecosystem. Different from many syntax-based repackaging detection techniques, in this work we propose a semantic-based approach, RepDetector, which is more robust against code obfuscation attacks. To capture an app’s semantics, our approach extracts input-output states of core functions in the app and then compare function and app similarity. We implement a prototype of RepDetector, and evaluate it against various obfuscation technologies. The results show that our approach can detect repackaged apps effectively. It is also at least a hundred times faster than Androguard.
AB - While Android app stores keep growing in size and in number, app repackaging has become a major threat to the health of the mobile ecosystem. Different from many syntax-based repackaging detection techniques, in this work we propose a semantic-based approach, RepDetector, which is more robust against code obfuscation attacks. To capture an app’s semantics, our approach extracts input-output states of core functions in the app and then compare function and app similarity. We implement a prototype of RepDetector, and evaluate it against various obfuscation technologies. The results show that our approach can detect repackaged apps effectively. It is also at least a hundred times faster than Androguard.
UR - http://www.scopus.com/inward/record.url?scp=84962339719&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84962339719&partnerID=8YFLogxK
U2 - 10.1007/978-3-319-30806-7_6
DO - 10.1007/978-3-319-30806-7_6
M3 - Conference contribution
AN - SCOPUS:84962339719
SN - 9783319308050
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 89
EP - 105
BT - Engineering Secure Software and Systems - 8th International Symposium, ESSoS 2016, Proceedings
A2 - Bodden, Eric
A2 - Caballero, Juan
A2 - Athanasopoulos, Elias
PB - Springer Verlag
T2 - 8th International Symposium on Engineering Secure Software and Systems, ESSoS 2016
Y2 - 6 April 2016 through 8 April 2016
ER -