TY - GEN
T1 - LibD
T2 - 39th IEEE/ACM International Conference on Software Engineering, ICSE 2017
AU - Li, Menghao
AU - Wang, Wei
AU - Wang, Pei
AU - Wang, Shuai
AU - Wu, Dinghao
AU - Liu, Jian
AU - Xue, Rui
AU - Huo, Wei
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2017/7/19
Y1 - 2017/7/19
N2 - With the thriving of the mobile app markets, third-party libraries are pervasively integrated in the Android applications. Third-party libraries provide functionality such as advertisements, location services, and social networking services, making multi-functional app development much more productive. However, the spread of vulnerable or harmful third-party libraries may also hurt the entire mobile ecosystem, leading to various security problems. The Android platform suffers severely from such problems due to the way its ecosystem is constructed and maintained. Therefore, third-party Android library identification has emerged as an important problem which is the basis of many security applications such as repackaging detection and malware analysis. According to our investigation, existing work on Android library detection still requires improvement in many aspects, including accuracy and obfuscation resilience. In response to these limitations, we propose a novel approach to identifying third-party Android libraries. Our method utilizes the internal code dependencies of an Android app to detect and classify library candidates. Different from most previous methods which classify detected library candidates based on similarity comparison, our method is based on feature hashing and can better handle code whose package and method names are obfuscated. Based on this approach, we have developed a prototypical tool called LibD and evaluated it with an update-To-date and large-scale dataset. Our experimental results on 1,427,395 apps show that compared to existing tools, LibD can better handle multi-package third-party libraries in the presence of name-based obfuscation, leading to significantly improved precision without the loss of scalability.
AB - With the thriving of the mobile app markets, third-party libraries are pervasively integrated in the Android applications. Third-party libraries provide functionality such as advertisements, location services, and social networking services, making multi-functional app development much more productive. However, the spread of vulnerable or harmful third-party libraries may also hurt the entire mobile ecosystem, leading to various security problems. The Android platform suffers severely from such problems due to the way its ecosystem is constructed and maintained. Therefore, third-party Android library identification has emerged as an important problem which is the basis of many security applications such as repackaging detection and malware analysis. According to our investigation, existing work on Android library detection still requires improvement in many aspects, including accuracy and obfuscation resilience. In response to these limitations, we propose a novel approach to identifying third-party Android libraries. Our method utilizes the internal code dependencies of an Android app to detect and classify library candidates. Different from most previous methods which classify detected library candidates based on similarity comparison, our method is based on feature hashing and can better handle code whose package and method names are obfuscated. Based on this approach, we have developed a prototypical tool called LibD and evaluated it with an update-To-date and large-scale dataset. Our experimental results on 1,427,395 apps show that compared to existing tools, LibD can better handle multi-package third-party libraries in the presence of name-based obfuscation, leading to significantly improved precision without the loss of scalability.
UR - http://www.scopus.com/inward/record.url?scp=85019247447&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85019247447&partnerID=8YFLogxK
U2 - 10.1109/ICSE.2017.38
DO - 10.1109/ICSE.2017.38
M3 - Conference contribution
AN - SCOPUS:85019247447
T3 - Proceedings - 2017 IEEE/ACM 39th International Conference on Software Engineering, ICSE 2017
SP - 335
EP - 346
BT - Proceedings - 2017 IEEE/ACM 39th International Conference on Software Engineering, ICSE 2017
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 20 May 2017 through 28 May 2017
ER -