Abstract

Mobile operating systems, such as Apple's iOS and Google's Android, have supported a ballooning market of feature-rich mobile applications. However, helping users understand and mitigate security risks of mobile applications is still an ongoing challenge. While recent work has developed various techniques to reveal suspicious behaviors of mobile applications, there exists little work to answer the following question: are those behaviors necessarily inappropriate? In this paper, we seek an approach to cope with such a challenge and present a continuous and automated risk assessment framework called RiskMon that uses machine-learned ranking to assess risks incurred by users' mobile applications, especially Android applications. RiskMon combines users' coarse expectations and runtime behaviors of trusted applications to generate a risk assessment baseline that captures appropriate behaviors of applications. With the baseline, RiskMon assigns a risk score on every access attempt on sensitive information and ranks applications by their cumulative risk scores. Furthermore, we demonstrate how RiskMon supports risk mitigation with automated permission revocation. We also discuss a proof-of-concept implementation of RiskMon as an extension of the Android mobile platform and provide both system evaluation and usability study of our methodology.

Original languageEnglish (US)
Article number6942253
Pages (from-to)571-584
Number of pages14
JournalIEEE Transactions on Dependable and Secure Computing
Volume12
Issue number5
DOIs
StatePublished - Sep 1 2015

Fingerprint

Risk assessment

Keywords

  • Android
  • Risk Assessment
  • Risk Mitigation
  • Smartphones

ASJC Scopus subject areas

  • Electrical and Electronic Engineering

Cite this

Towards Automated Risk Assessment and Mitigation of Mobile Applications. / Jing, Yiming; Ahn, Gail-Joon; Zhao, Ziming; Hu, Hongxin.

In: IEEE Transactions on Dependable and Secure Computing, Vol. 12, No. 5, 6942253, 01.09.2015, p. 571-584.

Research output: Contribution to journalArticle

@article{280be161c8a04ba7993772da218c0225,
title = "Towards Automated Risk Assessment and Mitigation of Mobile Applications",
abstract = "Mobile operating systems, such as Apple's iOS and Google's Android, have supported a ballooning market of feature-rich mobile applications. However, helping users understand and mitigate security risks of mobile applications is still an ongoing challenge. While recent work has developed various techniques to reveal suspicious behaviors of mobile applications, there exists little work to answer the following question: are those behaviors necessarily inappropriate? In this paper, we seek an approach to cope with such a challenge and present a continuous and automated risk assessment framework called RiskMon that uses machine-learned ranking to assess risks incurred by users' mobile applications, especially Android applications. RiskMon combines users' coarse expectations and runtime behaviors of trusted applications to generate a risk assessment baseline that captures appropriate behaviors of applications. With the baseline, RiskMon assigns a risk score on every access attempt on sensitive information and ranks applications by their cumulative risk scores. Furthermore, we demonstrate how RiskMon supports risk mitigation with automated permission revocation. We also discuss a proof-of-concept implementation of RiskMon as an extension of the Android mobile platform and provide both system evaluation and usability study of our methodology.",
keywords = "Android, Risk Assessment, Risk Mitigation, Smartphones",
author = "Yiming Jing and Gail-Joon Ahn and Ziming Zhao and Hongxin Hu",
year = "2015",
month = "9",
day = "1",
doi = "10.1109/TDSC.2014.2366457",
language = "English (US)",
volume = "12",
pages = "571--584",
journal = "IEEE Transactions on Dependable and Secure Computing",
issn = "1545-5971",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
number = "5",

}

TY - JOUR

T1 - Towards Automated Risk Assessment and Mitigation of Mobile Applications

AU - Jing, Yiming

AU - Ahn, Gail-Joon

AU - Zhao, Ziming

AU - Hu, Hongxin

PY - 2015/9/1

Y1 - 2015/9/1

N2 - Mobile operating systems, such as Apple's iOS and Google's Android, have supported a ballooning market of feature-rich mobile applications. However, helping users understand and mitigate security risks of mobile applications is still an ongoing challenge. While recent work has developed various techniques to reveal suspicious behaviors of mobile applications, there exists little work to answer the following question: are those behaviors necessarily inappropriate? In this paper, we seek an approach to cope with such a challenge and present a continuous and automated risk assessment framework called RiskMon that uses machine-learned ranking to assess risks incurred by users' mobile applications, especially Android applications. RiskMon combines users' coarse expectations and runtime behaviors of trusted applications to generate a risk assessment baseline that captures appropriate behaviors of applications. With the baseline, RiskMon assigns a risk score on every access attempt on sensitive information and ranks applications by their cumulative risk scores. Furthermore, we demonstrate how RiskMon supports risk mitigation with automated permission revocation. We also discuss a proof-of-concept implementation of RiskMon as an extension of the Android mobile platform and provide both system evaluation and usability study of our methodology.

AB - Mobile operating systems, such as Apple's iOS and Google's Android, have supported a ballooning market of feature-rich mobile applications. However, helping users understand and mitigate security risks of mobile applications is still an ongoing challenge. While recent work has developed various techniques to reveal suspicious behaviors of mobile applications, there exists little work to answer the following question: are those behaviors necessarily inappropriate? In this paper, we seek an approach to cope with such a challenge and present a continuous and automated risk assessment framework called RiskMon that uses machine-learned ranking to assess risks incurred by users' mobile applications, especially Android applications. RiskMon combines users' coarse expectations and runtime behaviors of trusted applications to generate a risk assessment baseline that captures appropriate behaviors of applications. With the baseline, RiskMon assigns a risk score on every access attempt on sensitive information and ranks applications by their cumulative risk scores. Furthermore, we demonstrate how RiskMon supports risk mitigation with automated permission revocation. We also discuss a proof-of-concept implementation of RiskMon as an extension of the Android mobile platform and provide both system evaluation and usability study of our methodology.

KW - Android

KW - Risk Assessment

KW - Risk Mitigation

KW - Smartphones

UR - http://www.scopus.com/inward/record.url?scp=84962023041&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84962023041&partnerID=8YFLogxK

U2 - 10.1109/TDSC.2014.2366457

DO - 10.1109/TDSC.2014.2366457

M3 - Article

VL - 12

SP - 571

EP - 584

JO - IEEE Transactions on Dependable and Secure Computing

JF - IEEE Transactions on Dependable and Secure Computing

SN - 1545-5971

IS - 5

M1 - 6942253

ER -