@inbook{150f15f8c36e4706a3f1d505d96f0b6a,
title = "Function escalation attack",
abstract = "The prevalence of smartphone makes it more important in people{\textquoteright}s business and personal life which also helps it to be a target of the malware. In this paper, we introduce a new kind of attack called Function Escalation Attack which obtains functions locally or remotely. We present three threat models: Steganography, Collusion Attack and Code Abusing. A vulnerability in Android filesystem which is used in code abusing threat model is exposed as well. Three proof-of-concept malicious apps are implemented for each threat model. They could bypass static analysis and dynamic analysis. The result shows that function escalation attack could successfully perform malicious tasks such as taking pictures, recording audio and so on.",
author = "Chen Cao and Yuqing Zhang and Qixu Liu and Kai Wang",
note = "Publisher Copyright: {\textcopyright} Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2015.",
year = "2015",
doi = "10.1007/978-3-319-23829-6_33",
language = "English (US)",
series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",
publisher = "Springer Verlag",
pages = "481--497",
booktitle = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",
address = "Germany",
}