IIT Home Page CNR Home Page

Probabilistic Contract Compliance for Mobile Applications

We propose PICARD (ProbabIlistic Contract on AndRoiD), a framework to generate probabilistic contracts to
detect repackaged applications for Android smartphones. A contract describes the sequences of actions that an application is allowed to perform at run-time, i.e. its legal behavior. In PICARD, contracts are generated from the set of traces that represent the usage profile of the application. Both the contract and the application’s run-time behavior are represented through clustered probabilistic automata. At run-time, the PICARD monitoring system verifies the compliance of the application trace with the contract. This approach is useful in detecting repackaged applications, whose behavior is strongly similar to the original application but it differs only from small paths in the traces. In this paper, we discuss the framework of PICARD for describing and generating contracts through probabilistic automata and introduce the notion of ActionNode, a cluster of related system calls, used to represent high level operations. Then, we present a first set of preliminary experiments on repackaged applications, to evaluate the viability of the proposed approach.

ARES 2013, Regensburg, Germany, 2013

External authors: Gianluca Dini (Dipartimento di Ingegneria dell'Informazione, Università di Pisa)
IIT authors:

Daniele Sgandurra

Foto di Daniele Sgandurra

Type: Article in proceedings of international peer-reviewed conference
Field of reference: Computer Science & Engineering