Mind the Gap: Finding what Updates have (really) changed in Android Applications

Johannes Feichtner; Lukas Neugebauer; Dominik Ziegler

doi:10.5220/0008119303060313

Mind the Gap: Finding what Updates have (really) changed in Android Applications

Johannes Feichtner, Lukas Neugebauer, Dominik Ziegler

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

Android apps often receive updates that introduce new functionality or tackle problems, ranging from critical security issues to usability-related bugs. Although developers tend to briefly denote changes when releasing new versions, it remains unclear what has actually been modified in the program code. Verifying even subtle changes between two Android apps is challenging due to the widespread use of code transformations and obfuscation techniques. In this paper, we present a new framework to precisely pinpoint differences between Android apps. By pursuing a multi-level comparison strategy that targets resources and obfuscation-invariant code elements, we succeed in highlighting similarities and changes among apps. In case studies, we demonstrate the need and practical benefits of our solution and show how well it is suited to verify changelogs.

Originalsprache	englisch
Titel	Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT
Erscheinungsort	Portugal
Herausgeber (Verlag)	SciTePress
Seiten	306-313
Seitenumfang	8
ISBN (elektronisch)	978-989-758-378-0
DOIs	https://doi.org/10.5220/0008119303060313
Publikationsstatus	Veröffentlicht - 2019
Veranstaltung	16th International Conference on Security and Cryptography - Prague, Tschechische Republik Dauer: 26 Juli 2019 → 28 Juli 2019 http://www.secrypt.icete.org/?y=2019

Konferenz

Konferenz	16th International Conference on Security and Cryptography
Kurztitel	SECRYPT 2019
Land/Gebiet	Tschechische Republik
Ort	Prague
Zeitraum	26/07/19 → 28/07/19
Internetadresse	http://www.secrypt.icete.org/?y=2019

Zugriff auf Dokument

10.5220/0008119303060313

mainEndgültige, publizierte Fassung, 353 KB

A-SIT - Zentrum für sichere Informationstechnologie Austria
Stranacher, K., Dominikus, S., Leitold, H., Marsalek, A., Teufl, P., Bauer, W., Aigner, M. J., Rössler, T., Neuherz, E., Dietrich, K., Zefferer, T., Mangard, S., Payer, U., Orthacker, C., Lipp, P., Reiter, A., Knall, T., Bratko, H., Bonato, M., Suzic, B., Zwattendorfer, B., Kreuzhuber, S., Oswald, M. E., Tauber, A., Posch, R., Bratko, D., Feichtner, J., Ivkovic, M., Reimair, F., Wolkerstorfer, J. & Scheibelhofer, K.
21/05/99 → 6/08/20
Projekt: Arbeitsgebiet

Dieses zitieren

Mind the Gap: Finding what Updates have (really) changed in Android Applications. / Feichtner, Johannes; Neugebauer, Lukas; Ziegler, Dominik.
Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT. Portugal: SciTePress, 2019. S. 306-313.

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Feichtner, J, Neugebauer, L & Ziegler, D 2019, Mind the Gap: Finding what Updates have (really) changed in Android Applications. in Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT. SciTePress, Portugal, S. 306-313, 16th International Conference on Security and Cryptography, Prague, Tschechische Republik, 26/07/19. https://doi.org/10.5220/0008119303060313

@inproceedings{3daef9e6d850424382436c6db7299a8d,

title = "Mind the Gap: Finding what Updates have (really) changed in Android Applications",

abstract = "Android apps often receive updates that introduce new functionality or tackle problems, ranging from critical security issues to usability-related bugs. Although developers tend to briefly denote changes when releasing new versions, it remains unclear what has actually been modified in the program code. Verifying even subtle changes between two Android apps is challenging due to the widespread use of code transformations and obfuscation techniques. In this paper, we present a new framework to precisely pinpoint differences between Android apps. By pursuing a multi-level comparison strategy that targets resources and obfuscation-invariant code elements, we succeed in highlighting similarities and changes among apps. In case studies, we demonstrate the need and practical benefits of our solution and show how well it is suited to verify changelogs.",

keywords = "Android, Code Comparison, Application Security, Static Analysis, Obfuscation, Smali",

author = "Johannes Feichtner and Lukas Neugebauer and Dominik Ziegler",

year = "2019",

doi = "10.5220/0008119303060313",

language = "English",

pages = "306--313",

booktitle = "Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT",

publisher = "SciTePress",

address = "Portugal",

note = "16th International Conference on Security and Cryptography, SECRYPT 2019 ; Conference date: 26-07-2019 Through 28-07-2019",

url = "http://www.secrypt.icete.org/?y=2019",

}

TY - GEN

T1 - Mind the Gap: Finding what Updates have (really) changed in Android Applications

AU - Feichtner, Johannes

AU - Neugebauer, Lukas

AU - Ziegler, Dominik

PY - 2019

Y1 - 2019

N2 - Android apps often receive updates that introduce new functionality or tackle problems, ranging from critical security issues to usability-related bugs. Although developers tend to briefly denote changes when releasing new versions, it remains unclear what has actually been modified in the program code. Verifying even subtle changes between two Android apps is challenging due to the widespread use of code transformations and obfuscation techniques. In this paper, we present a new framework to precisely pinpoint differences between Android apps. By pursuing a multi-level comparison strategy that targets resources and obfuscation-invariant code elements, we succeed in highlighting similarities and changes among apps. In case studies, we demonstrate the need and practical benefits of our solution and show how well it is suited to verify changelogs.

AB - Android apps often receive updates that introduce new functionality or tackle problems, ranging from critical security issues to usability-related bugs. Although developers tend to briefly denote changes when releasing new versions, it remains unclear what has actually been modified in the program code. Verifying even subtle changes between two Android apps is challenging due to the widespread use of code transformations and obfuscation techniques. In this paper, we present a new framework to precisely pinpoint differences between Android apps. By pursuing a multi-level comparison strategy that targets resources and obfuscation-invariant code elements, we succeed in highlighting similarities and changes among apps. In case studies, we demonstrate the need and practical benefits of our solution and show how well it is suited to verify changelogs.

KW - Android

KW - Code Comparison

KW - Application Security

KW - Static Analysis

KW - Obfuscation

KW - Smali

U2 - 10.5220/0008119303060313

DO - 10.5220/0008119303060313

M3 - Conference paper

SP - 306

EP - 313

BT - Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT

PB - SciTePress

CY - Portugal

T2 - 16th International Conference on Security and Cryptography

Y2 - 26 July 2019 through 28 July 2019

ER -

Mind the Gap: Finding what Updates have (really) changed in Android Applications

Abstract

Konferenz

Zugriff auf Dokument

Fingerprint

Projekte

A-SIT - Zentrum für sichere Informationstechnologie Austria

Dieses zitieren