SANT: Static Analysis of Native Threads for Security Vetting of Android Applications

Q: How can I download an article?

To download an article from SID, first log in to the site, search for the article title, and click on the 'Download Article' option.

Q: How can I download an ISI article?

To download an ISI article on SID, enter the keyword or article title in the search bar, view the relevant results, click on the desired article, and select the 'Download Article' option.

Q: How can I access the SID database?

To access the SID database, visit SID.ir, create an account, and log in to access scientific resources.

Q: Is downloading articles from SID free?

Some articles on SID are available for free, while others require payment. Details are specified on the article's page.

Andarzian Seyed Behnam; TORK LADANI BEHROUZ

مرکز اطلاعات علمی Scientific Information Database (SID) - Trusted Source for Research and Academic Resources

Journal Paper

Paper Information

Journal: THE ISC INTERNATIONAL JOURNAL OF INFORMATION SECURITY Year:2022 | Volume:14 | Issue:1 Page(s): 13-25

Download Full-Text

View:

Download:

155

Cites:

Information Journal Paper

Title

SANT: Static Analysis of Native Threads for Security Vetting of Android Applications

Author(s)

Andarzian Seyed Behnam | TORK LADANI BEHROUZ | Issue Writer Certificate

Keywords

Android Security

Information Leakage

Mobile Security

Static Analysis

Abstract

Most of the current research on Static Analysis of Android applications for security vetting either works on Java source code or the Dalvik bytecode. Nevertheless, Android allows developers to use C or C++ code in their programs compiled into various binary architectures. Moreover, Java and the native code components (C or C++) can collaborate using the Java Native Interface. Recent research shows that native codes are frequently used in both benign and malicious Android applications. Most of the present Android Static Analysis tools avert considering native codes in their analysis and applied trivial models for their data-flow analysis. As we know, only the open-source JN-SAF tool has tried to solve this issue statically. However, there are still challenges like libC functions and multi-threading in native codes that we want to address in this work. We presented SANT as an extension of JN-SAF for supporting Static Analysis of Native Threads. We considered modeling libC functions in our data-flow analysis to have a more precise analysis when dealing with security vetting of native codes. We also used control flow and data dependence graphs in SANT to handle multiple concurrent threads and find implicit data-flow between them. Our experiments show that the conducted improvements outperform JN-SAF in real-world benchmark applications.

Multimedia

No record.

Cites

No record.

References

No record.

Cite

APA: Copy

Andarzian, Seyed Behnam, & TORK LADANI, BEHROUZ. (2022). SANT: Static Analysis of Native Threads for Security Vetting of Android Applications. THE ISC INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 14(1), 13-25. SID. https://sid.ir/paper/978262/en

Vancouver: Copy

Andarzian Seyed Behnam, TORK LADANI BEHROUZ. SANT: Static Analysis of Native Threads for Security Vetting of Android Applications. THE ISC INTERNATIONAL JOURNAL OF INFORMATION SECURITY[Internet]. 2022;14(1):13-25. Available from: https://sid.ir/paper/978262/en

IEEE: Copy

Seyed Behnam Andarzian, and BEHROUZ TORK LADANI, “SANT: Static Analysis of Native Threads for Security Vetting of Android Applications,” THE ISC INTERNATIONAL JOURNAL OF INFORMATION SECURITY, vol. 14, no. 1, pp. 13–25, 2022, [Online]. Available: https://sid.ir/paper/978262/en

Related Journal Papers

No record.

Related Seminar Papers

No record.

Related Plans

No record.

Recommended Workshops