YoVDO

TriggerScope - Towards Detecting Logic Bombs in Android Applications

Offered By: IEEE via YouTube

Tags

Malware Detection Courses Cybersecurity Courses Symbolic Execution Courses

Course Description

Overview

Explore advanced techniques for detecting logic bombs in Android applications through this IEEE conference talk. Delve into the TriggerScope system, which combines symbolic execution, path predicate reconstruction, and inter-procedural control-dependency analysis to identify triggers in mobile apps. Learn about the challenges of detecting malicious application logic and how TriggerScope overcomes limitations of existing approaches. Discover the system's effectiveness in analyzing benign apps from the Google Play Store and trigger-based malware, including the HackingTeam's RCSAndroid. Examine various types of triggers, such as time-, location-, and SMS-related, and understand how TriggerScope achieves a low false positive rate while maintaining high detection accuracy. Gain insights into the identification of previously unknown backdoors in benign apps and the implications for mobile security.

Syllabus

Introduction
Symbolic Execution
Expression Tree
PostFilter Steps
Data Sets
Results
Location Check
Remote Lock
Complex Applications
Hacking Teams
Conclusion


Taught by

IEEE Symposium on Security and Privacy

Tags

Related Courses

Computer Security
Stanford University via Coursera
Cryptography II
Stanford University via Coursera
Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera
Building an Information Risk Management Toolkit
University of Washington via Coursera
Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network