System Signals Monitoring and Processing for Colluded Application Attacks Detection in Android OS

This paper investigates a novel colluded application attack's influence on the system's technological signals of an Android OS smartphone. This attack requires two or more applications to collaborate in order to bypass permission restriction mechanisms and leak private data. We implement t...

Full description

Saved in:
Bibliographic Details
Main Authors: Khokhlov, Igor, Perez, Michael, Reznik, Leon
Format: Conference Proceeding
Language:English
Subjects:
Android system monitoring
Attack detection
Clocks
Handheld computers
Memory management
neural networks
Permission
Random access memory
Signal resolution
Smart phones
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:This paper investigates a novel colluded application attack's influence on the system's technological signals of an Android OS smartphone. This attack requires two or more applications to collaborate in order to bypass permission restriction mechanisms and leak private data. We implement this attack on a real stock Android OS smartphone and record such technological signals as overall memory consumption, CPU utilization, and CPU frequency. These recordings are studied in order to investigate the feasibility of their employment in building the attack classifiers. In developing those classifiers, we employed various machine learning techniques processing these technological signals. Such machine learning techniques as a feed-forward and long-short term memory neural networks were investigated and compared against each other. The results achieved are presented and analyzed.
ISSN:2471-9242
DOI:10.1109/WNYIPW.2019.8923113