Repseabet mobilet name:Hardware-Assisted Analysis of Hardened Android Applicaseabet mobileons
Reporseabet mobiler:Dr. Xue Lei, Hong Kong Polytechnic seabet mobile
seabet mobileme and place:2Decemseabet mobiler 29, 2021 (Wednesday) 10 am:30-11:30
North Campus Computer Buildseabet mobilegConfeseabet mobilence Room 212
Repseabet mobilet Summary:
Android seabet mobile have been widely adopted by developers to protect apps from being plagiarized. Meanwhile, various unpacking tools unpack the apps through direct memory dumping. To defend against these off-the-shelf unpacking tools, seabet mobile start to adopt virtual machine (VM) based protection techniques, which replace the original Dalvik bytecode (DCode) with customized bytecode (PCode) in memory. This defeats the unpackers using memory dumping mechanisms. However, little is known about whether such seabet mobile can provide enough protection to Android apps.
To shed light on these questions, we take the first step towards demystifying the protections provided to the apps by the VM-based seabet mobile and propose novel program analysis techniques to investigate existing commercial VM-based seabet mobile including a learning phase and a deobfuscation phase. We aim at deobfuscating the VM-protected DCode in three scenarios, recovering the original DCode or its semantics with training apps, and restoring the semantics without training apps. We also develop a prototype named Parema to automate much work of the deobfuscation procedure. By applying it to the online VM-based Android seabet mobile, we reveal that all evaluated seabet mobile do not provide adequate protection and could be compromised.
Personal seabet mobiletroduction:
Assistant Professor (Research), Department of Computing, Hong Kong Polytechnic seabet mobile、Doctoral Supervisor,Long-time engaged in system security、Software Engineering、Research on network security, connected car security and other related fields,Currently publishedMore than 30 articles on system seabet mobilecurity、Software engineering related papers,Published 10 CCF-A conference and journal papers as the first author,includes IEEE S&P、Useabet mobileNIX seabet mobilecurity、ICseabet mobile、ISSTA、TIFS、Tseabet mobile etc.,And applied for and authorized multiple Chineseabet mobile and American invention patents。Currently chairing the National Natural Science Youth Foundation、CCF-Tencent Rhino Bird Fund and other projects,And seabet mobilerves as a TPC member of multiple international conferences and TIFS、TDSC、Reviewer of TMC and other journals。
