Mind the Gap: Finding what Updates have (really) changed in Android Applications

Johannes Feichtner; Lukas Neugebauer; Dominik Ziegler

doi:10.5220/0008119303060313

Mind the Gap: Finding what Updates have (really) changed in Android Applications

Johannes Feichtner, Lukas Neugebauer, Dominik Ziegler

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

Android apps often receive updates that introduce new functionality or tackle problems, ranging from critical security issues to usability-related bugs. Although developers tend to briefly denote changes when releasing new versions, it remains unclear what has actually been modified in the program code. Verifying even subtle changes between two Android apps is challenging due to the widespread use of code transformations and obfuscation techniques. In this paper, we present a new framework to precisely pinpoint differences between Android apps. By pursuing a multi-level comparison strategy that targets resources and obfuscation-invariant code elements, we succeed in highlighting similarities and changes among apps. In case studies, we demonstrate the need and practical benefits of our solution and show how well it is suited to verify changelogs.

Original language	English
Title of host publication	Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT
Place of Publication	Portugal
Publisher	SciTePress
Pages	306-313
Number of pages	8
ISBN (Electronic)	978-989-758-378-0
DOIs	https://doi.org/10.5220/0008119303060313
Publication status	Published - 2019
Event	16th International Conference on Security and Cryptography - Prague, Czech Republic Duration: 26 Jul 2019 → 28 Jul 2019 http://www.secrypt.icete.org/?y=2019

Conference

Conference	16th International Conference on Security and Cryptography
Abbreviated title	SECRYPT 2019
Country/Territory	Czech Republic
City	Prague
Period	26/07/19 → 28/07/19
Internet address	http://www.secrypt.icete.org/?y=2019

Keywords

Android
Code Comparison
Application Security
Static Analysis
Obfuscation
Smali

Access to Document

10.5220/0008119303060313

mainFinal published version, 353 KB

A-SIT - Secure Information Technology Center Austria
Stranacher, K., Dominikus, S., Leitold, H., Marsalek, A., Teufl, P., Bauer, W., Aigner, M. J., Rössler, T., Neuherz, E., Dietrich, K., Zefferer, T., Mangard, S., Payer, U., Orthacker, C., Lipp, P., Reiter, A., Knall, T., Bratko, H., Bonato, M., Suzic, B., Zwattendorfer, B., Kreuzhuber, S., Oswald, M. E., Tauber, A., Posch, R., Bratko, D., Feichtner, J., Ivkovic, M., Reimair, F., Wolkerstorfer, J. & Scheibelhofer, K.
21/05/99 → 6/08/20
Project: Research area

Cite this

Mind the Gap: Finding what Updates have (really) changed in Android Applications. / Feichtner, Johannes; Neugebauer, Lukas; Ziegler, Dominik.
Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT. Portugal: SciTePress, 2019. p. 306-313.

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Feichtner, J, Neugebauer, L & Ziegler, D 2019, Mind the Gap: Finding what Updates have (really) changed in Android Applications. in Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT. SciTePress, Portugal, pp. 306-313, 16th International Conference on Security and Cryptography, Prague, Czech Republic, 26/07/19. https://doi.org/10.5220/0008119303060313

@inproceedings{3daef9e6d850424382436c6db7299a8d,

title = "Mind the Gap: Finding what Updates have (really) changed in Android Applications",

abstract = "Android apps often receive updates that introduce new functionality or tackle problems, ranging from critical security issues to usability-related bugs. Although developers tend to briefly denote changes when releasing new versions, it remains unclear what has actually been modified in the program code. Verifying even subtle changes between two Android apps is challenging due to the widespread use of code transformations and obfuscation techniques. In this paper, we present a new framework to precisely pinpoint differences between Android apps. By pursuing a multi-level comparison strategy that targets resources and obfuscation-invariant code elements, we succeed in highlighting similarities and changes among apps. In case studies, we demonstrate the need and practical benefits of our solution and show how well it is suited to verify changelogs.",

keywords = "Android, Code Comparison, Application Security, Static Analysis, Obfuscation, Smali",

author = "Johannes Feichtner and Lukas Neugebauer and Dominik Ziegler",

year = "2019",

doi = "10.5220/0008119303060313",

language = "English",

pages = "306--313",

booktitle = "Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT",

publisher = "SciTePress",

address = "Portugal",

note = "16th International Conference on Security and Cryptography, SECRYPT 2019 ; Conference date: 26-07-2019 Through 28-07-2019",

url = "http://www.secrypt.icete.org/?y=2019",

}

TY - GEN

T1 - Mind the Gap: Finding what Updates have (really) changed in Android Applications

AU - Feichtner, Johannes

AU - Neugebauer, Lukas

AU - Ziegler, Dominik

PY - 2019

Y1 - 2019

N2 - Android apps often receive updates that introduce new functionality or tackle problems, ranging from critical security issues to usability-related bugs. Although developers tend to briefly denote changes when releasing new versions, it remains unclear what has actually been modified in the program code. Verifying even subtle changes between two Android apps is challenging due to the widespread use of code transformations and obfuscation techniques. In this paper, we present a new framework to precisely pinpoint differences between Android apps. By pursuing a multi-level comparison strategy that targets resources and obfuscation-invariant code elements, we succeed in highlighting similarities and changes among apps. In case studies, we demonstrate the need and practical benefits of our solution and show how well it is suited to verify changelogs.

AB - Android apps often receive updates that introduce new functionality or tackle problems, ranging from critical security issues to usability-related bugs. Although developers tend to briefly denote changes when releasing new versions, it remains unclear what has actually been modified in the program code. Verifying even subtle changes between two Android apps is challenging due to the widespread use of code transformations and obfuscation techniques. In this paper, we present a new framework to precisely pinpoint differences between Android apps. By pursuing a multi-level comparison strategy that targets resources and obfuscation-invariant code elements, we succeed in highlighting similarities and changes among apps. In case studies, we demonstrate the need and practical benefits of our solution and show how well it is suited to verify changelogs.

KW - Android

KW - Code Comparison

KW - Application Security

KW - Static Analysis

KW - Obfuscation

KW - Smali

U2 - 10.5220/0008119303060313

DO - 10.5220/0008119303060313

M3 - Conference paper

SP - 306

EP - 313

BT - Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT

PB - SciTePress

CY - Portugal

T2 - 16th International Conference on Security and Cryptography

Y2 - 26 July 2019 through 28 July 2019

ER -

Mind the Gap: Finding what Updates have (really) changed in Android Applications

Abstract

Conference

Keywords

Access to Document

Fingerprint

Projects

A-SIT - Secure Information Technology Center Austria

Cite this