A Defense Scheme for Activity Hijack Based on Safe Container

doi:10.3969/j.issn.1671-1122.2017.12.011

Abstract

Abstract:

As a malicious attack to steal user privacy data, Activity hijack causes serious security threat to user's private data. For the malicious test link of the Activity hijack attacks, this paper puts forward the concept of using safe container operation environment that isolate the application from the external environment. It is hard for malicious attackers to get the running state and the information from the running task about the application running in the safe container, only can get the fake information of the proxy components. So it can prevent external malicious attackers from covering the Activity interface. This scheme is anylyzed from the perspective of Activity hijack attack process, designs interception means to prevent the occurrence of Activity hijack. Experimental results show that our method is available and effective to provide safe and reliable operation environment for the application. What's more, it don't change the kernel of android and can ensure the application from the attacks of Activity hijack.

Key words: security container, hijacked fishing, malicious attacks

CLC Number:

TP309.1

Cancan CHEN, Haoliang CUI, Wen ZHANG, Shaozhang NIU. A Defense Scheme for Activity Hijack Based on Safe Container[J]. Netinfo Security, 2017, 17(12): 61-66.

Figures/Tables 12

References 13

[1]	IDC. Smartphone OS Market Share, 2017 Q1[EB/OL].
[2]	蔡林,陈铁明. Android移动恶意代码检测的研究概述与展望[J]. 信息网络安全,2016(9):218-222.
[3]	DAI Guqian, GE Jigang, CAI Minghang, et al. SVM-based Malware Detection for Android Applications[EB/OL]. https://www.deepdyve.com/lp/association-for-computing-machinery/svm-based-malware-detection-for-android-applications-2HlS0vbpyG, 2015-6-22.
[4]	NAN Yuhong , YANG Min , YANG Zhemin , et al. UIPicker: User-input Privacy Identification in Mobile Applications[EB/OL]. .
[5]	BIANCHI A, CORBETTA J, INVERNIZZI L, et al. What the App is That? Deception and Countermeasures in the Android User Interface[EB/OL]. .
[6]	李汶洋. Android操作系统恶意软件检测技术研究[J]. 信息网络安全,2015(9):62-65.
[7]	REN Chuangang , ZHANG Yulong, XUE Hui , et al. Towards Discovering and Understanding Task Hijacking in Android[EB/OL]. .
[8]	徐强,梁彬,游伟,等. 基于SURF算法的Android恶意应用钓鱼登录界面检测[J]. 清华大学学报:自然科学版,2016(1):77-82.
[9]	SUN Mingshen, LI Mengmeng , LUI J C S , et al. DroidEagle: Seamless Detection of Visually Similar Android Apps[EB/OL]. .
[10]	余丽芳,杨天长,牛少彰. 一种增强型Android组件间安全访问控制方案[J]. 信息网络安全,2016(8):54-60.
[11]	CHEN Wenzhi, XU Lei, LI Guoxi, et al.A Lightweight Virtualization Solution for Android Devices[J]. IEEE Transactions on Computers, 2015, 64(10): 2741-2751.
[12]	YANG Zhemin, YANG Min, ZHANG Yuan, et al. AppIntent: Analyzing Sensitive Data Transmission in Android for Privacy Leakage Detection[EB/OL]. .
[13]	REN Yunlong , LI Yue, YUAN Fangfang , et al. Hijacking Activity Technology Analysis and Research in Android System[EB/OL]. .

[1]	Gaoshou ZHAI, Chen LIU, Yong XIANG. Study and Implementation of Systematic Protection by Monitoring Abnormal Invocation of Linux Kernel Functions [J]. Netinfo Security, 2018, 18(3): 26-38.
[2]	Zhuoqun XIA, Lei ZHAO, Jing WANG, Wenhuan LI. Research on a Privacy Protection Method for Power Users Based on Virtual Ring Architecture [J]. Netinfo Security, 2018, 18(2): 48-53.
[3]	Shuning WEI, Xingru CHEN, Yong TANG, Hui LIU. Research on the Application of AR-HELM Algorithm in Network Traffic Classifi cation [J]. Netinfo Security, 2018, 18(1): 9-14.
[4]	Guofeng ZHAO, Fei YE, Yongan YAO, Yan ZHAO. Design and Implementation of A Multi-pattern String Matching Algorithm in Cloud Center Network Intrusion Detection System [J]. Netinfo Security, 2018, 18(1): 52-57.
[5]	Baoyuan KANG, Jiaqiang WANG, Dongyang SHAO, Chunqing LI. A Secure Authentication and Key Agreement Protocol for Heterogeneous Ad Hoc Wireless Sensor Networks [J]. Netinfo Security, 2018, 18(1): 23-30.
[6]	Yue SHI, Xianglong LI, Fangfang DAI. An Enhanced Security Framework of Software Defi ned Network Based on Attribute-based Encryption [J]. Netinfo Security, 2018, 18(1): 15-22.
[7]	Jianbiao ZHANG, Zixiao ZHAO, Jun HU, Xiao WANG. The Design Framework of Reconfi gurable Virtual Root of Trust in Cloud Environment [J]. Netinfo Security, 2018, 18(1): 1-8.
[8]	Limin SONG, Xiaorui SONG. Design and Implementation of a Data Security Transmission Scheme Based on Hybrid Encryption [J]. Netinfo Security, 2017, 17(12): 6-10.
[9]	Wei SONG, Dongliang ZHANG, Zhenguo QI, Nan ZHENG. A Violent Video Detection Method Based on 3D Convolutional Networks [J]. Netinfo Security, 2017, 17(12): 54-60.
[10]	Zhenfei ZHOU, Binxing FANG, Xiang CUI, Qixu LIU. A Method of Malicious Code Detection in WordPress Theme Based on Similarity Analysis [J]. Netinfo Security, 2017, 17(12): 47-53.
[11]	Hongling LI, Jianxin ZOU. Research of SQL Injection Detection Based on SVM and Text Feature Extraction [J]. Netinfo Security, 2017, 17(12): 40-46.
[12]	Tong WU, Siqi LI, Weijun YANG, Li ZHAO. Research on Cloud Storage Data Forensics Method Based on KMP Algorithm [J]. Netinfo Security, 2017, 17(12): 36-39.
[13]	Khan Safi Qamas GUL, Peng WANG, Senlin LUO, Limin PAN. A Technical Research on High-concurrency Web Application [J]. Netinfo Security, 2017, 17(12): 29-35.
[14]	Yang XU, Yi CHEN, Rui HE, Xiaoyao XIE. Research of DDoS Detection and Multi-layer Defense in SDN [J]. Netinfo Security, 2017, 17(12): 22-28.
[15]	Chunming TANG, Long GAO. Multi-parties Key Agreement Protocol in Block Chain [J]. Netinfo Security, 2017, 17(12): 17-21.