Journal on Communications ›› 2021, Vol. 42 ›› Issue (11): 13-27.doi: 10.11959/j.issn.1000-436x.2021198

• Topics: New Technology of Computer Communication and Network System Security • Previous Articles     Next Articles

Research on context-aware Android application vulnerability detection

Jiawei QIN1,2, Hua ZHANG1, Hanbing YAN2, Nengqiang HE2, Tengfei TU1   

  1. 1 State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China
    2 The National Computer Network Emergency Response Technical Team/Coordination Center of China, Beijing 100029, China
  • Revised:2021-09-27 Online:2021-11-25 Published:2021-11-01
  • Supported by:
    The National Natural Science Foundation of China(62072051);The National Natural Science Foundation of China(61976024);The National Natural Science Foundation of China(61972048);The Fundamental Research Funds for the Central Universities(2019XD-A01);Key Project Plan of Blockchain in Ministry of Education(2020KJ010802)

Abstract:

The vulnerability detection model of Android application based on learning lacks semantic features.The extracted features contain noise data unrelated to vulnerabilities, which leads to the false positive of vulnerability detection model.A feature extraction method based on code information slice (CIS) was proposed.Compared with the abstract syntax tree (AST) feature method, the proposed method could extract the variable information directly related to vulnerabilities more accurately and avoid containing too much noise data.It contained semantic information of vulnerabilities.Based on CIS and BI-LSTM with attention mechanism, a context-aware Android application vulnerability detection model VulDGArcher was proposed.For the problem that the Android vulnerability data set was not easy to obtain, a data set containing 41 812 code fragments including the implicit Intent security vulnerability and the bypass PendingIntent permission audit vulnerability was built.There were 16 218 code fragments of vulnerability.On this data set, VulDGArcher’s detection accuracy can reach 96%, which is higher than the deep learning vulnerability detection model based on AST features and APP source code features.

Key words: Android vulnerability detection, deep learning, CIS, semantic characteristics of vulnerabilities

CLC Number: 

No Suggested Reading articles found!