標題: | CRAXDroid: Android 下的自動化攻擊產生系統 CRAXDroid: Crash Analysis for Automatic Exploit Generation on Android System |
作者: | 陳俊諺 Chen, Chun-yen 黃世昆 陳穎平 Huang, Shih-kun Chen, Ying-ping 資訊科學與工程研究所 |
關鍵字: | 軟體脅迫;軟體品質;符號執行;Android;Apps;Exploit;Symbolic Execution;Software Quality |
公開日期: | 2013 |
摘要: | "The number of mobile-connected devices will exceed the world’s population by
2014.", said Cisco. People live on mobile devices
nowadays literally, and the situation is still getting worse ever since company
starts to embed smart devices into accessories, for example, glasses, watches,
etc. Making life better is wonderful, while losing privacy is bad. The
prevalence of modern smart devices, such as smart phones and tablets, are owed
to enriched third-party applications, or so-called apps. However, most mobile
device users have no idea how their privacy data are potentially exposed by
using or just installing apps that are badly designed. These apps may not be
designed with malicious intention, but may contain software design flaws, or
bugs, which could be exploited and further take over control of the device.
From the moment on, invaders may pry into victims' life without its knowing.
Besides privacy leakage, invaders may take victims' as a gateway or even a
member of a botnet to further attack other victims. As a result, software
quality becomes a critical issue on mobile devices. CRAXDroid is
built as a platform aiming at vulnerability discovering and exploiting of
Android apps. "The number of mobile-connected devices will exceed the world’s population by 2014.", said Cisco. People live on mobile devices nowadays literally, and the situation is still getting worse ever since company starts to embed smart devices into accessories, for example, glasses, watches, etc. Making life better is wonderful, while losing privacy is bad. The prevalence of modern smart devices, such as smart phones and tablets, are owed to enriched third-party applications, or so-called apps. However, most mobile device users have no idea how their privacy data are potentially exposed by using or just installing apps that are badly designed. These apps may not be designed with malicious intention, but may contain software design flaws, or bugs, which could be exploited and further take over control of the device. From the moment on, invaders may pry into victims' life without its knowing. Besides privacy leakage, invaders may take victims' as a gateway or even a member of a botnet to further attack other victims. As a result, software quality becomes a critical issue on mobile devices. CRAXDroid is built as a platform aiming at vulnerability discovering and exploiting of Android apps. |
URI: | http://140.113.39.130/cdrfb3/record/nctu/#GT070156004 http://hdl.handle.net/11536/75598 |
Appears in Collections: | Thesis |
Files in This Item:
If it is a zip file, please download the file and unzip it, then open index.html in a browser to view the full text content.