Sciweavers

MOBISYS
2011
ACM

Analyzing inter-application communication in Android

13 years 2 months ago
Analyzing inter-application communication in Android
Modern smartphone operating systems support the development of third-party applications with open system APIs. In addition to an open API, the Android operating system also provides a rich inter-application message passing system. This encourages inter-application collaboration and reduces developer burden by facilitating component reuse. Unfortunately, message passing is also an application attack surface. The content of messages can be sniffed, modified, stolen, or replaced, which can compromise user privacy. Also, a malicious application can inject forged or otherwise malicious messages, which can lead to breaches of user data and violate application security policies. We examine Android application interaction and identify security risks in application components. We provide a tool, ComDroid, that detects application communication vulnerabilities. ComDroid can be used by developers to analyze their own applications before release, by application reviewers to analyze applications...
Erika Chin, Adrienne Porter Felt, Kate Greenwood,
Added 16 Sep 2011
Updated 16 Sep 2011
Type Journal
Year 2011
Where MOBISYS
Authors Erika Chin, Adrienne Porter Felt, Kate Greenwood, David Wagner
Comments (0)