04038nam 22006015 450 991015185810332120200704131703.03-319-47812-510.1007/978-3-319-47812-8(CKB)3710000000952897(DE-He213)978-3-319-47812-8(MiAaPQ)EBC4745440(iGPub)SPNA0045391(PPN)197138748(EXLCZ)99371000000095289720161117d2016 u| 0engurnn#008mamaatxtrdacontentcrdamediacrrdacarrierAndroid Application Security A Semantics and Context-Aware Approach /by Mu Zhang, Heng Yin1st ed. 2016.Cham :Springer International Publishing :Imprint: Springer,2016.1 online resource (XI, 105 p. 37 illus., 29 illus. in color.)SpringerBriefs in Computer Science,2191-57683-319-47811-7 Includes bibliographical references at the end of each chapters.Introduction -- Background -- Semantics-Aware Android Malware Classification -- Automatic Generation of Vulnerability-Specific Patches for Preventing Component Hijacking Attacks -- Efficient and Context-Aware Privacy Leakage Confinement -- Automatic Generation of Security-Centric Descriptions for Android Apps -- Limitation and Future Work -- Conclusion.This SpringerBrief explains the emerging cyber threats that undermine Android application security. It further explores the opportunity to leverage the cutting-edge semantics and context–aware techniques to defend against such threats, including zero-day Android malware, deep software vulnerabilities, privacy breach and insufficient security warnings in app descriptions. The authors begin by introducing the background of the field, explaining the general operating system, programming features, and security mechanisms. The authors capture the semantic-level behavior of mobile applications and use it to reliably detect malware variants and zero-day malware. Next, they propose an automatic patch generation technique to detect and block dangerous information flow. A bytecode rewriting technique is used to confine privacy leakage. User-awareness, a key factor of security risks, is addressed by automatically translating security-related program semantics into natural language descriptions. Frequent behavior mining is used to discover and compress common semantics. As a result, the produced descriptions are security-sensitive, human-understandable and concise. By covering the background, current threats, and future work in this field, the brief is suitable for both professionals in industry and advanced-level students working in mobile security and applications. It is valuable for researchers, as well.SpringerBriefs in Computer Science,2191-5768Computer securityComputer networksElectrical engineeringSystems and Data Securityhttps://scigraph.springernature.com/ontologies/product-market-codes/I28060Computer Communication Networkshttps://scigraph.springernature.com/ontologies/product-market-codes/I13022Communications Engineering, Networkshttps://scigraph.springernature.com/ontologies/product-market-codes/T24035Computer security.Computer networks.Electrical engineering.Systems and Data Security.Computer Communication Networks.Communications Engineering, Networks.005.365Zhang Muauthttp://id.loc.gov/vocabulary/relators/aut922404Yin Hengauthttp://id.loc.gov/vocabulary/relators/autMiAaPQMiAaPQMiAaPQBOOK9910151858103321Android Application Security2069862UNINA