modeling the android platform
play

Modeling the Android Platform Etienne Payet LIM-ERIMIA, universit - PowerPoint PPT Presentation

Jul 24, 2023 •109 likes •628 views

Modeling the Android Platform Etienne Payet LIM-ERIMIA, universit e de la R eunion BYTECODE13 Saturday 23 March 2013 Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE13 1 / 50 Reunion, a part of France

  1. Modeling the Android Platform ´ Etienne Payet LIM-ERIMIA, universit´ e de la R´ eunion BYTECODE’13 Saturday 23 March 2013 ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 1 / 50

  2. Reunion, a part of France and Europe (OMR of EU) ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 2 / 50

  3. Outline Analyzing Android applications 1 Operational semantics for Dalvik 2 Designing an operational semantics for Android 3 Conclusion 4 ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 3 / 50

  4. What is Android? An operating system (OS) for: mobile devices (smartphones, tablets), embedded devices (televisions, car radios, . . . ), x86 platforms ( http://www.android-x86.org ). ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 4 / 50

  5. Worldwide mobile device sales in 3Q12 (thousands of units) ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 5 / 50

  6. What is Android? A language: for developping applications for the Android OS, Java with an extended library for mobile and interactive applications, based on an event-driven architecture. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 6 / 50

  7. Building an Android application ( http://developer.android.com/tools/building/index.html ) ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 7 / 50

  8. .dex files Their format is optimized for minimal memory usage: the design is driven by sharing of data, they contain Dalvik bytecode, dex stands for Dalvik executable. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 8 / 50

  9. Dalvik bytecode It is run by an instance of the Dalvik Virtual Machine (DVM), DVM � = JVM (register-based vs stack-based), register-based VMs are well-suited for devices with constrained processing power: on average, they are faster than stack-based VMs. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 9 / 50

  10. Android applications They can be downloaded from anywhere Google play (official store), Amazon, AppsApk.com, pandaapp, . . . They are not necessarily digitally signed. ⇒ Reliability is a major concern for users and developers. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 10 / 50

  11. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 11 / 50

  12. Analyzing Android applications For finding malicious code ( e.g., security and privacy vulnerabilities) bugs ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 12 / 50

  13. Google’s analyses “Google has started analyzing apps before putting them in their catalog in order to detect anomalous behavior. According to their own sources, they have managed to reduce malicious app downloads by 40 percent.” (PandaLabs Annual Report 2012) ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 13 / 50

  14. Static analyses for finding security/privacy vulnerabilities Barrera, Kayacik, van Oorschot, Somayaji. A methodology for empirical analysis of permission-based security models and its application to Android . Proc. of CCS’10. Chin, Felt, Greenwood, Wagner. Analyzing inter-application communication in Android . Proc. of MobiSys’11. Enck, Octeau, McDaniel, Chaudhuri. A study of Android application security . Proc. of SEC’11. Felt, Chin, Hanna, Song, Wagner. Android permissions demystified . Proc. of CCS’11. Fuchs, Chaudhuri, Foster. SCanDroid: Automated security certification of Android applications . Draft, 2009. Kim, Yoon, Yi, Shin. ScanDal: Static analyzer for detecting privacy leaks in Android applications . MoST’12. Wognsen, Karlsen. Static analysis of Dalvik bytecode and reflection in Android . Master’s thesis, Aalborg University, 2012. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 14 / 50

  15. Static analyses for finding bugs Klocwork. http://www.klocwork.com . Payet, Spoto. Static analysis of Android programs . Information & Software Technology, 2012. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 15 / 50

  16. Dynamic analyses for finding security vulnerabilities Bugiel, Davi, Dmitrienko, Fischer, Sadeghi, Shastry. Towards taming privilege-escalation attacks on Android . Proc. of NDSS’12. Dietz, Shekhar, Pisetsky, Shu, Wallach. QUIRE: Lightweight provenance for smart phone operating systems . Proc. of USENIX Security Symposium. 2011. Enck, Gilbert, Chun, Cox, Jung, McDaniel, Sheth. TaintDroid: An information-flow tracking system for realtime privacy monitoring on smartphones . Proc. of OSDI’10. Felt, Wang, Moshchuk, Hanna, Chin. Permission redelegation: Attacks and defenses . Proc. of USENIX Security Symposium. 2011. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 16 / 50

  17. Symbolic execution for analyzing programs Jeon, Micinski, Foster. SymDroid: Symbolic execution for Dalvik bytecode . Submitted, July 2012. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 17 / 50

  18. Modeling the Android platform Dalvik � = Android Some of these analyses rely on a formal operational semantics for Dalvik. But none of them provide a formal semantics for key specific features of the Android platform. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 18 / 50

  19. Outline Analyzing Android applications 1 Operational semantics for Dalvik 2 Designing an operational semantics for Android 3 Conclusion 4 ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 19 / 50

  20. Dalvik registers Each method has a fresh set of registers. Invoked methods do not affect the registers of invoking methods. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 20 / 50

  21. Dalvik instructions Move between registers ( move , move-object , move-wide , . . . ), constants to registers ( const , const/4 , const/16 , . . . ), operations on int, long, float, double ( add-int , sub-int , . . . ), instance creation ( new-instance ), read/write member fields ( iget , iput , . . . ), read/write static fields ( sget , sput , . . . ), array manipulation ( new-array , array-length , . . . ), read/write array elements ( aget , aput , . . . ), execution control ( goto , if-eq , if-lt , . . . ), method invocation ( invoke-virtual , invoke-super , . . . ), setting the result value ( return-void , return , . . . ), getting the result value ( move-result , move-result-object , . . . ), · · · ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 21 / 50

  22. Example (smali syntax) .class public LFactorial; .super Ljava/lang/Object; .method public static factorial(I)I .registers 2 const/4 v0, 1 if-lez v1, :end sub-int v0, v1, v0 invoke-static {v0}, LFactorial;->factorial(I)I move-result v0 mul-int v0, v1, v0 :end return v0 .end method ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 22 / 50

  23. Operational semantics for the whole Dalvik [WK12] Wognsen, Karlsen. Static analysis of Dalvik bytecode and reflection in Android . Master’s thesis, Aalborg University, 2012. m . instructionAt ( pc ) = move r 1 r 2 � S , H , � m , pc , R � :: SF � ⇒ � S , H , � m , pc + 1 , R [ r 1 �→ R ( r 2 )] � :: SF � S is a static heap, H is a heap, SF is a call stack m is a method, R ∈ Register → Value is a set of local registers ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 23 / 50

  24. Intermediate languages They consist of a small set of instructions into which Dalvik can be easily translated. Dalvik Core: Kim, Yoon, Yi, Shin. ScanDal: Static analyzer for detecting privacy leaks in Android applications . MoST’12. µ -Dalvik: Jeon, Micinski, Foster. SymDroid: Symbolic execution for Dalvik bytecode . Submitted, July 2012. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 24 / 50

  25. µ -Dalvik vs the others µ -Dalvik operational semantics constructs a path condition φ which records which conditional branches have been taken thus far: π = (Σ[ [ r 1 ] ] � Σ[ [ r 2 ] ]) φ t = π ∧ Σ .φ SAT ( φ t ) � Σ , if r 1 � r 2 then pc t � ⇒ Σ[ φ �→ φ t , pc �→ pc t ] µ -Dalvik provides an instruction for checking a property of interest: ¬ SAT ( ¬ Σ[ [ r ] ]) � Σ , assert r � ⇒ Σ[ pc �→ pc + 1] ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 25 / 50

  26. Outline Analyzing Android applications 1 Operational semantics for Dalvik 2 Designing an operational semantics for Android 3 Conclusion 4 ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 26 / 50

  27. Goal Provide a formal basis for the development of analyses that consider the complex flow of information inside Android applications, that usually consist of interacting components. ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 27 / 50

  28. Android application components (Activities) single screens with a visual user interface (Services) background operations with no interaction with the user (Content providers) data containers such as databases (Broadcast receivers) objects reacting to broadcast messages ´ Etienne Payet (LIM-ERIMIA) Modeling the Android Platform BYTECODE’13 28 / 50

Recommend

Android Android Application Development - Ashwin Agenda Android Platform Overview

Android Android Application Development - Ashwin Agenda Android Platform Overview

Android Android Application Development - Ashwin Agenda Android Platform Overview Installation Building Blocks Application Development Development Tools Source walk through Introduction to Android Open software

978 views • 49 slides
Profiling and optimization for Android applications on the tATAmI platform UNDERSTANDING THE T

Profiling and optimization for Android applications on the tATAmI platform UNDERSTANDING THE T

Profiling and optimization for Android applications on the tATAmI platform UNDERSTANDING THE T ATA M I PLATFORM AND THE S-CLAIM LANGUAGE Outline Intro The tATAmI Platform S-CLAIM An Example Scenario (ProCon Android App) Intro

540 views • 20 slides
Android Introduction Architecture Activities, Lifecycle Development Environment 1 Why Android?

Android Introduction Architecture Activities, Lifecycle Development Environment 1 Why Android?

Android Introduction Architecture Activities, Lifecycle Development Environment 1 Why Android? Pervasive Mobile Platform - Runs on hundreds of millions of mobile phones, tablets - Worlds most popular & frequently installed mobile OS

896 views • 73 slides
Competition Authority About Platform Markets Esra KKKZ Competition Expert at TCA

Competition Authority About Platform Markets Esra KKKZ Competition Expert at TCA

Important Cases of Turkish Competition Authority About Platform Markets Esra KKKZ Competition Expert at TCA Google Android (Decision Date: 19.09.2018, Decision Number: 18-33/555-273) Android Open Source Project Open Source Android

417 views • 29 slides
A Real-time Extension to the Android Platform Igor Kalkov, Dominik Franke, John F. Schommer,

A Real-time Extension to the Android Platform Igor Kalkov, Dominik Franke, John F. Schommer,

JTRES 2012 A Real-time Extension to the Android Platform Igor Kalkov, Dominik Franke, John F. Schommer, Stefan Kowalewski 24-26 October 2012 Copenhagen, Denmark Introduction Mobile platform by Open Handset Alliance - Supervised by

490 views • 16 slides
APIM IGRATOR : An API-Usage Migration Tool for Android Apps Mattia Fazzini Qi Xin Alessandro

APIM IGRATOR : An API-Usage Migration Tool for Android Apps Mattia Fazzini Qi Xin Alessandro

APIM IGRATOR : An API-Usage Migration Tool for Android Apps Mattia Fazzini Qi Xin Alessandro Orso Mobile Applications Platform Platform Tight Coupling Platforms Change Platforms Change Frequently Android Petit Four Cupcake Donut 1.1

491 views • 28 slides
Automated API-Usage Update for Android Apps Mattia Fazzini Qi Xin Alessandro Orso Mobile

Automated API-Usage Update for Android Apps Mattia Fazzini Qi Xin Alessandro Orso Mobile

Automated API-Usage Update for Android Apps Mattia Fazzini Qi Xin Alessandro Orso Mobile Applications Platform Platform Tight Coupling Platforms Change Platforms Change Frequently Android Petit Four Cupcake Donut 1.1 Eclair Froyo

901 views • 70 slides
Cross-platform support: Android, IOS, Windows, OS X, Chromecast,

Cross-platform support: Android, IOS, Windows, OS X, Chromecast,

Cross-platform support: Android, IOS, Windows, OS X, Chromecast, Apple TV. Also works on Linux (Unofficially)

435 views • 20 slides
Developers Google Maps Android API v2 Make your Android app pop with Google Maps Android API v2

Developers Google Maps Android API v2 Make your Android app pop with Google Maps Android API v2

Developers Google Maps Android API v2 Make your Android app pop with Google Maps Android API v2 Anthony Morris Jan-Felix Schmakeit Tech Lead, Android Maps API Android Developer Relations Code, Slides, Worksheet: http://goo.gl/MfY67 Welcome!

687 views • 49 slides
Cheating Platform on Android Milan Gabor & Danijel Grah / W hoAreW e > Just two guys

Cheating Platform on Android Milan Gabor & Danijel Grah / W hoAreW e > Just two guys

Creating a kewl and simple Cheating Platform on Android Milan Gabor & Danijel Grah / W hoAreW e > Just two guys from Slovenia > Having fun breaking stuff > Love to play with apps > BSidesLV, DEF CON W all of Sheep,

786 views • 44 slides
Download FoodSwitch for iOS or Android FoodSwitch: A mobile platform for packaged food

Download FoodSwitch for iOS or Android FoodSwitch: A mobile platform for packaged food

Download FoodSwitch for iOS or Android FoodSwitch: A mobile platform for packaged food surveillance and behavioral research Mark Huffman, MD, MPH Department of Preventive Medicine and Medicine-Cardiology Northwestern University Feinberg

755 views • 44 slides
Introduction to Android Development What is Android? Android is the customizable, easy to

Introduction to Android Development What is Android? Android is the customizable, easy to

Introduction to Android Development What is Android? Android is the customizable, easy to use operating system that powers more than a billion devices across the globe - from phones and tablets to watches, TV, cars and more to come.

464 views • 21 slides
TACKYDROID Pentesting Android Applications in Style THIS TALK IS ABOUT AN APP WE ARE MAKING

TACKYDROID Pentesting Android Applications in Style THIS TALK IS ABOUT AN APP WE ARE MAKING

TACKYDROID Pentesting Android Applications in Style THIS TALK IS ABOUT AN APP WE ARE MAKING This talk IS NOT about Android platform itself This talk IS about how we want to contribute auditing apps that run on Android systems With

975 views • 74 slides
CS619 Android 101 BENCE CSERNA Android: Manifest example Android: Manifest <manifest

CS619 Android 101 BENCE CSERNA Android: Manifest example Android: Manifest <manifest

Project #1: Color Guess Game CS619 Android 101 BENCE CSERNA Android: Manifest example Android: Manifest <manifest xmlns:android="http://schemas.android.com/apk/res/android" package="net.cserna.bence.colorguess

201 views • 3 slides
What other Android APIs may be useful for ubicomp? Speaking to Android Ref: Professional Android 4

What other Android APIs may be useful for ubicomp? Speaking to Android Ref: Professional Android 4

What other Android APIs may be useful for ubicomp? Speaking to Android Ref: Professional Android 4 Development, Meier, Ch 11, pg 437 Speech recognition: Accept inputs as speech (instead of typing) e.g. dragon dictate app? Note: Google

333 views • 16 slides
Android AsyncTask AsyncTask Android AsyncTask is an abstract class provided by Android

Android AsyncTask AsyncTask Android AsyncTask is an abstract class provided by Android

Android AsyncTask AsyncTask Android AsyncTask is an abstract class provided by Android which gives us the liberty to perform heavy tasks in the background and keep the UI thread light thus making the application more responsive. Basic

240 views • 5 slides
CS378 - Mobile Computing Android Overview and Android Development Environment What is Android?

CS378 - Mobile Computing Android Overview and Android Development Environment What is Android?

CS378 - Mobile Computing Android Overview and Android Development Environment What is Android? A software stack for mobile devices that includes An operating system Middleware Key Applications Uses Linux to provide core

583 views • 31 slides
CS371m - Mobile Computing Android Overview and Android Development Environment What is Android?

CS371m - Mobile Computing Android Overview and Android Development Environment What is Android?

CS371m - Mobile Computing Android Overview and Android Development Environment What is Android? A software stack for mobile devices that includes An operating system Middleware Key Applications Uses Linux to provide core

1.49k views • 70 slides
Transaction-level modeling of bus-based systems with SystemC 2.0 Ric Hilderink, Thorsten

Transaction-level modeling of bus-based systems with SystemC 2.0 Ric Hilderink, Thorsten

Transaction-level modeling of bus-based systems with SystemC 2.0 Ric Hilderink, Thorsten Grtker Synopsys, Inc. Efficient platform modeling Get to executable platform model ASAP Simulation speed >> 100k cycles/sec C DSP BUS

581 views • 40 slides
Android Malware Analysis on Attacks and Defense Android malware Android malware With the

Android Malware Analysis on Attacks and Defense Android malware Android malware With the

Android Malware Analysis on Attacks and Defense Android malware Android malware With the explosive growth of mobile device market and usage, there is an increasing number of malicious mobile applications targeting these devices and

819 views • 44 slides
CS 528 Mobile and Ubiquitous Computing Lecture 3: Android UI, WebView, Android Activity Lifecycle

CS 528 Mobile and Ubiquitous Computing Lecture 3: Android UI, WebView, Android Activity Lifecycle

CS 528 Mobile and Ubiquitous Computing Lecture 3: Android UI, WebView, Android Activity Lifecycle Emmanuel Agu Android UI Design Example GeoQuiz App Reference: Android Nerd Ranch, pgs 1 32 App presents questions to test users knowledge

1k views • 96 slides
Services Android Services A Service is an application component that runs in the background, not

Services Android Services A Service is an application component that runs in the background, not

Lesson 22 Lesson 22 Android Android Services Victor Matos Cleveland State University Cleveland State University Notes are based on: Android Developers http://developer.android.com/index.html Portions of this page are reproduced from work

692 views • 26 slides
Android Pre-requisites 1 Android To Dos Make sure you have working

Android Pre-requisites 1 Android To Dos Make sure you have working

Android Pre-requisites 1 Android To Dos Make sure you have working install of Android Studio Make sure it works by running Hello, world App On emulator

666 views • 24 slides
Android Michael Greifeneder Image source: Android homepage Inhalt Overwiew Hardware

Android Michael Greifeneder Image source: Android homepage Inhalt Overwiew Hardware

Android Michael Greifeneder Image source: Android homepage Inhalt Overwiew Hardware Software Development Tools Basics Debugging/Emulator Location Demo Android And Me Why I like Android Blend of Linux

1.01k views • 25 slides

More recommend