Risk Measurement Method of Collusion Privilege Escalation Attacks for Android Apps Based on Feature Weight and Behavior Determination
To solve the issue of measuring the risk of the application-layer collusion privilege escalation attacks in Android apps, this paper proposed a risk measurement method based on the feature weight and behavior determination. Analytic hierarchy process (AHP) is used to calculate the weight of feature...
Main Authors: | , , , , , |
---|---|
Format: | Article |
Language: | English |
Published: |
Hindawi-Wiley
2021-01-01
|
Series: | Security and Communication Networks |
Online Access: | http://dx.doi.org/10.1155/2021/8814844 |
id |
doaj-1aa71f734ad84967aa59cd515844fbf3 |
---|---|
record_format |
Article |
spelling |
doaj-1aa71f734ad84967aa59cd515844fbf32021-02-15T12:52:42ZengHindawi-WileySecurity and Communication Networks1939-01141939-01222021-01-01202110.1155/2021/88148448814844Risk Measurement Method of Collusion Privilege Escalation Attacks for Android Apps Based on Feature Weight and Behavior DeterminationHui Li0Limin Shen1Yuying Wang2Jiayin Feng3Honglei Tan4Zhiming Li5School of Information Science and Engineering, Yanshan University, Qinhuangdao 066004, ChinaSchool of Information Science and Engineering, Yanshan University, Qinhuangdao 066004, ChinaSchool of Information Science and Engineering, Yanshan University, Qinhuangdao 066004, ChinaSchool of Information Science and Engineering, Yanshan University, Qinhuangdao 066004, ChinaSchool of Continuing Education, Yanshan University, Qinhuangdao 066004, ChinaSchool of Information Science and Engineering, Yanshan University, Qinhuangdao 066004, ChinaTo solve the issue of measuring the risk of the application-layer collusion privilege escalation attacks in Android apps, this paper proposed a risk measurement method based on the feature weight and behavior determination. Analytic hierarchy process (AHP) is used to calculate the weight of feature in the feature set extracted from the app. App behavior and attack behavior are modeled by process algebra. The weak equivalent and nonequivalent are introduced to determine the behavior of apps, whereas the measurement function is constructed to calculate the app risk measurement value. In an experiment with three known apps, the measurement values are 0.629, 1, and 0.976. These results are consistent with reality, and the effectiveness and feasibility of the proposed method are verified. Through the benchmark and test set experiments, it can be seen that the measurement value of apps that has weak equivalent to attack behavior is distributed between 0.0468 and 1, and the measurement value distribution is reasonable, which verifies the accuracy and rationality of the method.http://dx.doi.org/10.1155/2021/8814844 |
collection |
DOAJ |
language |
English |
format |
Article |
sources |
DOAJ |
author |
Hui Li Limin Shen Yuying Wang Jiayin Feng Honglei Tan Zhiming Li |
spellingShingle |
Hui Li Limin Shen Yuying Wang Jiayin Feng Honglei Tan Zhiming Li Risk Measurement Method of Collusion Privilege Escalation Attacks for Android Apps Based on Feature Weight and Behavior Determination Security and Communication Networks |
author_facet |
Hui Li Limin Shen Yuying Wang Jiayin Feng Honglei Tan Zhiming Li |
author_sort |
Hui Li |
title |
Risk Measurement Method of Collusion Privilege Escalation Attacks for Android Apps Based on Feature Weight and Behavior Determination |
title_short |
Risk Measurement Method of Collusion Privilege Escalation Attacks for Android Apps Based on Feature Weight and Behavior Determination |
title_full |
Risk Measurement Method of Collusion Privilege Escalation Attacks for Android Apps Based on Feature Weight and Behavior Determination |
title_fullStr |
Risk Measurement Method of Collusion Privilege Escalation Attacks for Android Apps Based on Feature Weight and Behavior Determination |
title_full_unstemmed |
Risk Measurement Method of Collusion Privilege Escalation Attacks for Android Apps Based on Feature Weight and Behavior Determination |
title_sort |
risk measurement method of collusion privilege escalation attacks for android apps based on feature weight and behavior determination |
publisher |
Hindawi-Wiley |
series |
Security and Communication Networks |
issn |
1939-0114 1939-0122 |
publishDate |
2021-01-01 |
description |
To solve the issue of measuring the risk of the application-layer collusion privilege escalation attacks in Android apps, this paper proposed a risk measurement method based on the feature weight and behavior determination. Analytic hierarchy process (AHP) is used to calculate the weight of feature in the feature set extracted from the app. App behavior and attack behavior are modeled by process algebra. The weak equivalent and nonequivalent are introduced to determine the behavior of apps, whereas the measurement function is constructed to calculate the app risk measurement value. In an experiment with three known apps, the measurement values are 0.629, 1, and 0.976. These results are consistent with reality, and the effectiveness and feasibility of the proposed method are verified. Through the benchmark and test set experiments, it can be seen that the measurement value of apps that has weak equivalent to attack behavior is distributed between 0.0468 and 1, and the measurement value distribution is reasonable, which verifies the accuracy and rationality of the method. |
url |
http://dx.doi.org/10.1155/2021/8814844 |
work_keys_str_mv |
AT huili riskmeasurementmethodofcollusionprivilegeescalationattacksforandroidappsbasedonfeatureweightandbehaviordetermination AT liminshen riskmeasurementmethodofcollusionprivilegeescalationattacksforandroidappsbasedonfeatureweightandbehaviordetermination AT yuyingwang riskmeasurementmethodofcollusionprivilegeescalationattacksforandroidappsbasedonfeatureweightandbehaviordetermination AT jiayinfeng riskmeasurementmethodofcollusionprivilegeescalationattacksforandroidappsbasedonfeatureweightandbehaviordetermination AT hongleitan riskmeasurementmethodofcollusionprivilegeescalationattacksforandroidappsbasedonfeatureweightandbehaviordetermination AT zhimingli riskmeasurementmethodofcollusionprivilegeescalationattacksforandroidappsbasedonfeatureweightandbehaviordetermination |
_version_ |
1714867223718264832 |