通信学报 ›› 2018, Vol. 39 ›› Issue (3): 159-171.doi: 10.11959/j.issn.1000-436x.2018045

• 论文Ⅱ:学术论文 • 上一篇    下一篇

SPRD:基于应用UI和程序依赖图的Android重打包应用快速检测方法

汪润1,2,3,王丽娜1,2,3,唐奔宵1,2,3,赵磊1,2,3   

  1. 1 武汉大学空天信息安全与可信计算教育部重点实验室,湖北 武汉 430072
    2 武汉大学计算机学院,湖北 武汉 430072
    3 武汉大学国家网络安全学院,湖北 武汉 430072
  • 修回日期:2017-12-21 出版日期:2018-03-01 发布日期:2018-04-02
  • 作者简介:汪润(1991-),男,安徽安庆人,武汉大学博士生,主要研究方向为 Android 安全与隐私、系统安全等。|王丽娜(1964-),女,辽宁营口人,博士,武汉大学教授、博士生导师,主要研究方向为系统安全、网络安全、信息隐藏等。|唐奔宵(1991-),男,湖北黄石人,武汉大学博士生,主要研究方向为移动安全与隐私、系统安全等。|赵磊(1985-),男,山东菏泽人,博士,武汉大学副教授、硕士生导师,主要研究方向为软件安全、系统安全等。
  • 基金资助:
    国家自然科学基金资助项目(U1536204);国家自然科学基金资助项目(61672394);国家自然科学基金资助项目(61373169);国家自然科学基金资助项目(61672393);国家高技术研究发展计划(“863”计划)基金资助项目(2015AA016004)

SPRD:fast application repackaging detection approach in Android based on application’s UI and program dependency graph

Run WANG1,2,3,Li’na WANG1,2,3,Benxiao TANG1,2,3,Lei ZHAO1,2,3   

  1. 1 Key Laboratory of Aerospace Information Security and Trusted Computing Ministry of Education,Wuhan University,Wuhan 430072,China
    2 School of Computer,Wuhan University,Wuhan 430072,China
    3 School of Cyber Science and Engineering,Wuhan University,Wuhan 430072,China
  • Revised:2017-12-21 Online:2018-03-01 Published:2018-04-02
  • Supported by:
    The National Natural Science Foundation of China(U1536204);The National Natural Science Foundation of China(61672394);The National Natural Science Foundation of China(61373169);The National Natural Science Foundation of China(61672393);The National High Technology Research and Development Program of China (863 Program)(2015AA016004)

摘要:

研究发现重打包应用通常不修改应用用户交互界面(UI,user interface)的结构,提出一种基于应用 UI和程序代码的两阶段检测方法。首先,设计了一种基于UI抽象表示的散列快速相似性检测方法,识别UI相似的可疑重打包应用;然后,使用程序依赖图作为应用特征表示,实现细粒度、精准的代码克隆检测。基于所提方法实现了一种原型系统——SPRD(scalable and precise repacking detection),实验验证所提方法具有良好的可扩展性和准确性,可以有效地应用于百万级应用和亿万级代码的大规模应用市场。

关键词: 重打包, 代码克隆, 用户界面, 程序依赖图, 安全与隐私

Abstract:

A two stage detection approach which combine application’s UI and program code based on the observation that repackaging applications merely modify the structure of their user interface was proposed.Firstly,a fast hash similarity detection technique based on an abstracted representation of UI to identify the potential visual-similar repackaging applications was designed.Secondly,program dependency graph is used to represent as the feature of app to achieve fine-grained and precise code clone detection.A prototype system,SPRD,was implemented based on the proposed approach.Experimental results show that the proposed approach achieves a good performance in both scalability and accuracy,and can be effectively applied in millions of applications and billions of code detection.

Key words: repackaging, code clone, user interface, program dependency graph, security and privacy

中图分类号: 

No Suggested Reading articles found!