Abstract
Android apps developed in Java language is vulnerable to repackaging attacks as it is easy to decompile an app. Therefore, obfuscation techniques can be used to make it difficult to analyzing the source of Android apps. However, repackaging attacks are fundamentally impossible to block. Especially, it has been confirmed that most Android-based smart phones do not support verification process for the forged applications. Accordingly, the user installs and uses a fake app that appears to be functioning normally. In this case, the user is easily exposed to attacks such as leakage of personal information. Therefore, in this paper, we have constructed mobile apps identification system that applies the signature self-verification server monitoring method for Android apps and proposed a method of judging Android mobile forgery apps by performing the verification process.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Rahman, M., Rahman, M., Carbunar, B., Chau, D.H.: FairPlay: fraud and malware detection in Google Play. In: Proceedings of the 2016 SIAM International Conference on Data Mining. Society for Industrial and Applied Mathematics (2016)
Verma, S., Muttoo, S.K., Pal, S.K.: MDroid: android based malware detection using MCM classifier. Int. J. Eng. Appl. Sci. Technol. 1(8), 206–215 (2016)
Ham, Y.J., Moon, D.Y., Lee, H.W., Lim, J.D., Kim, J.N.: Android mobile application system call event pattern analysis for determination of malicious attack. Int. J. Secur. Its Appl. (IJSIA) 8(1), 231–246 (2014)
Enck, W., Ongtang, M., McDaniel, P.: Understanding android security. IEEE Secur. Priv. Mag. 7(1), 50–57 (2009)
Shabtai, A., Kanonov, U., Elovici, Y., Glezer, C., Weiss, Y.: Andromaly: a behavioral malware detection framework for android devices. J. Intell. Inf. Syst. 38(1), 161–190 (2012)
Android-studio app-signing Homepage. https://developer.android.com/studio/publish/app-signing.html?hl = ko. Accessed 26 Feb 2018
Acknowledgments
This research was supported by Basic Science Research Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Education, Science and Technology (NRF-2017R1D1B03035040).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Lee, HW., Lee, J. (2019). Mobile Forged App Identification System with Centralized Signature Self-verification Method. In: Hwang, S., Tan, S., Bien, F. (eds) Proceedings of the Sixth International Conference on Green and Human Information Technology. ICGHIT 2018. Lecture Notes in Electrical Engineering, vol 502. Springer, Singapore. https://doi.org/10.1007/978-981-13-0311-1_29
Download citation
DOI: https://doi.org/10.1007/978-981-13-0311-1_29
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-13-0310-4
Online ISBN: 978-981-13-0311-1
eBook Packages: EngineeringEngineering (R0)