Browse > Article

Avoiding Automatic Android App Analysis by Detecting Random Touch Generation  

Yun, Han Jae (한남대학교/컴퓨터공학과)
Lee, Man Hee (한남대학교/컴퓨터공학과)
Publication Information
Convergence Security Journal / v.15, no.7, 2015 , pp. 21-29 More about this Journal
Abstract
As the number of malicious Android applications increases rapidly, many automatic analysis systems are proposed. Hoping to trigger as many malicious behaviors as possible, the automatic analysis systems are adopting random touch generation modules. In this paper, we propose how to differentiate real human touches and randomly generated touches. Through experiments, we figured out that the distance between two consecutive human touches is shorter than that of random generation module. Also we found that the touch speed of human is also limited. In addition, humans rarely touch the outer area of smartphone screen. By using statistics of human smartphone touch, we developed an algorithm to differentiate between human touches and randomly generated touches. We hope this research will help enhance automatic Android app analysis systems.
Keywords
Android; Random touch generation; automatic analysis avoidance;
Citations & Related Records
연도 인용수 순위
  • Reference
1 http://developer.android.com/tools/help/monkeyrunner_concepts.html
2 Ying-Chih Shen, Roger Chien, Shih-Hao Hung, Toward Efficient Dynamic Analysis and Testing for Android Malware, IT Convergence Practice, Vol.2, No.3, 2014
3 Lukas Weichselbaum, Matthias Neugschwandtner, Martina Lindorfer, Yanick Fratantonio, Voctor van der Veen, Christian Platzer, ANDRUBIS:Android Malware Under The Magnifying Glass, Technical Report TR-ISECLAB-0414-001, 2014.
4 Andrea Gianazza, PuppetDroid: A Remote execution environment and UI exerciser for android malware analysis, politesi, 2013
5 Kimberly Tam , Salahuddin J. Khan , Aristide Fattoriy, and Lorenzo Cavallaro, CopperDroid:Automatic Reconstruction of Android Malware Behaviors, NDSS symposium, 2015.
6 Aravind Machiry, Rohan Tahiliani, Mayur Naik, Dynodroid: An Input Generation System for Android Apps, ESEC/FSE, 2013.
7 Jan Van Eijck, Evaluating the Efficiency of GUI Ripping for Automated Testing of Android Applications
8 Shuai Hao, Bin Liu, Suman Nath, William G.J. Halfond, Ramesh Govindan, PUMA: Programmable UI-Automation for Large-Scale Dynamic Analysis of Mobile Apps
9 Machael Bierma, Eric Gustafson, Jeremy Erickson, David Fritz, Yung Ryn Choe, Andlantis: Large-scale Android Dynamic Analysis.
10 Riyadh Mahmood, Nariman Mirzaei, Sam Malek. EvoDroid: Segmented Evolutionary Testing of Android Apps
11 Tahir Javaid, Testing of Android Testing Tools: Development of a Benchmark for the Evaluation. Universidad Politecnica de Madrid 2015.
12 Christian Rossow, Dynamic Analysis of Android Malware. University Amsterdam. 2013.