Attacks
Permission Circumvention
Sensor Based
GUI Based
- What the App is That? Deception and Coutermeasures in the Android User Interface
- A. Bianchi, j. Corbetta, L. Invernizzi, Y. Fratantonio, C. Kruegel, G. Vigna; 2015.
- Screenmilker: How to Milk Your Android Screen for Secrets
- Chia-Chi Lin, Hongyang Li, Xiao-yong Zhou, XiaoFeng Wang; 2014.
- Peeking into Your App without Actually Seeing it: UI State Inference and Novel Android Attacks
- Qi Alfred Chen, Zhiyun Qian, Zhuoqing Morley Mao; 2014.
System Based
Misc
Prevention
System Security
- From Zygote to Morula: Fortifying Weakend ASLR on Android
- Byoungyoung Lee, Long Lu, Tielei Wang, Taesoo Kim, Wenke Lee; 2014.
- ASM: A Programmable Interface for Extending Android Security
- Stephan Heuser, Adwait Nadkarni, William Enck, Ahmad-Reza Saeghi; 2014.
- AirBag: Boosting Smartphone Resistance to Malware Infection
- Chiachih Wu, Yajin Zhou, Kunal Patel, Zhenkai Liang, Xuxian Jiang; 2014.
App-level Security
- Cassandra: Towards a Certifying App Store for Android
- Steffen Lortz, Heiko Mantel, Artem Starostin, Timo Bahr, David Schneider, Alexandra Weber; 2014.
- Leave me Alone: App-Level Protection against Runtime information Gathering on Android
- Nan Zhang, Kan Yuan, M Naveed, Xiaoyong Zhou, Xiaofeng Wang; 2015.
- AppSealer: Automatic Generation of Vulnerability-Specific Patches for Preventing Component Hijacking Attacks in Android Applications.
- Mu Zhang, Heng Yin; 2014.
Detection
Static Analysis - Malware
- What the App is That? Deception and Coutermeasures in the Android User Interface
- A. Bianchi, j. Corbetta, L. Invernizzi, Y. Fratantonio, C. Kruegel, G. Vigna; 2015.
- DREBIN: Effective and explainable detection of Android Malware in Your Pocket.
- Daniel Arp, Michael Spreitzenbarth, Malte Hubner, Hugo Gascon, Konrad Rieck; 2014.
- Information Flow Analysis of Android Applications in DroidSafe
- Michael I. Gordon, Deokhwan kim, Jeff H. Perkins, Limei Gilham, Nguyen Nguyen, Martin C. Rinard; 2015.
Static Analysis - Vulnerability
Static + Dynamic Analysis - Vulnerability
Static + Dynamic Analysis - Malware
Dynamic Analysis - Malware
Dynamic Analysis - Vulnerability
Empirical Study
- Analysis of Secure Key Storage Solutions on Android
- Tim Cooijmans, Joeri de Ruiter, Erik Poll; 2014.
- The company you keep: mobile malware infection rates and inexpensive risk indicators
- Hien Thi Thu Truong, Eemil Lagerspetz, Petteri Nurmi, Adam J. Oliner, Sasu Tarkoma, No. Asokan, Sourav Bhattacharya; 2015.
- Inside Job; Understanding and Mitigating the Threat of External Device Mis-Binding on Android
- Muhammad Naveed, Xiao-yong Zhou, Soteris Demetriou, XiaoFeng Wang, Carl A. Gunter; 2014.
- Breaking and Fixing Origin-Based Access Control in Hybrid Web/Mobile Application Frameworks.
- Martin Georgiev, Suman Jana, Vitaly Shmatikov; 2014.
- AccelPrint: Imperfections of Accelerometers Make Smartphones Trackable
- Sanorita Dey, Nirupam roy, Wenyuan Xu, Romit Roy Choudhury, Srihari Nelakuditi; 2014.
Need Categorization
- LazyTainter: Memory-Efficient Taint Tracking in Managed Runtime
- Zheng Wei, David Lie; 2014. ???
- What's in Your Dongle and Bank Account? Mandatory and Discretionary Protection of Android External Resources. ???
- Soteris Demetriou, Xiao-yong Zhou, Muhammad Naveed, Yeonjoon Lee, Kan Yuan, XiaoFeng Wang, Carl A. Gunter; 2015.
- EdgeMiner: Automatically Detecting Implicit Control Flow Transitions through the Android Framework ???
- Yinzhi Cao, Yanick Fratantonio, Antonio Bianchi, Manuel Egele, Christopher Kruegel, Giovanni Vigna, Yan Chen; 2015.
- CopperDroid: Automatic Reconstruction of Android Malware Behaviors ???
- Kimberly Tam, Salahuddin J. Khan, Aristide Fattori, Lorenzo Cavallaro; 2015.
- DeepDroid: Dynamically Enforcing Enterprise Policy on Android Devices ???
- Xueqiang Wang, Kun Sun, Yuewu Wang, Jiwu Jing; 2015.
- A Machine-learning Approach for Classifying and Categorizing Android Sources and Sinks ???
- Siegfried Rasthofer, Steven Arzt, Eric Bodden; 2014.
- Execute This! Analyzing Unsafe and Malicious Dynamic Code Loading in Android Applications ???
- Sebastian Poeplau, Yanick Fratantonio, Antonio Bianchi, Christoper Kruegel, Giovani Vigna; 2014
- Early Detection of Spam Mobile Apps ???
- Suranga Seneviratne, Aruna Seneviratne, Mohamed Ali kaafar, Anirban Mahanti, Prasant Mohapatra; 2015.