Mining Sandboxes for Security – Automatisches Sandboxing fü̈r Software-Sicherheit

We present sandbox mining, a technique to confine an application to resources accessed during automatic testing. Sandbox mining first explores software behavior by means of automatic test generation, and extracts the set of resources accessed during these tests. This set is then used as a sandbox, blocking access to resources not used during testing. The mined sandbox thus protects against behavior changes such as the activation of latent malware, infections, targeted attacks, or malicious updates. The use of test generation makes sandbox mining a fully automatic process that can be run by vendors and end users alike. Our BOXMATE prototype requires less than one hour to extract a sandbox from an Android app, with few to no confirmations required for frequently used functionality.

Jamrozik, Konrad; Zeller, Andreas (2017): Mining Sandboxes for Security – Automatisches Sandboxing fü̈r Software-Sicherheit. Software Engineering 2017. Bonn: Gesellschaft für Informatik e.V.. PISSN: 1617-5468. ISBN: 978-3-88579-661-9. pp. 111. Security & Privacy. Hannover. 21.-24. Februar 2017

Sammlungen

P267 - Software Engineering 2017

Komplettanzeige

Mining Sandboxes for Security – Automatisches Sandboxing fü̈r Software-Sicherheit

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen