Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
In-memory credentials robbery on android phones
KTH, School of Information and Communication Technology (ICT), Communication Systems, CoS, Network Systems Laboratory (NS Lab).
KTH, School of Information and Communication Technology (ICT), Communication Systems, CoS, Network Systems Laboratory (NS Lab).
2013 (English)In: 2013 World Congress on Internet Security, WorldCIS 2013, IEEE Computer Society, 2013, 88-93 p.Conference paper, Published paper (Refereed)
Abstract [en]

Mobile phones have almost replaced the work of traditional computers and people nowadays use them for both business and personal purposes, in a much more complex way than some years ago. However, the notion of 'mobile phone' has not changed accordingly: the majority of the people consider this device as a phone without thinking the implications of their digital life when using it. In this paper we demonstrate how to steal user's credentials and sensitive information in general from the memory of an Android device. We do so by analysing how mobile applications manage users data when these are loaded in the memory of the device. We use this findings to create a malware application able to retrieve login credentials from memory of the target applications, exploiting vulnerabilities due to both the user behavior and the poor practices when developing mobile applications. Finally, and most importantly, we show that this attack is not noticed by the mobile phone user both in terms of visibility and mobile phone performance.

Place, publisher, year, edition, pages
IEEE Computer Society, 2013. 88-93 p.
Keyword [en]
android phone, malware, memory analysis, personal information
National Category
Engineering and Technology
Identifiers
URN: urn:nbn:se:kth:diva-147257DOI: 10.1109/WorldCIS.2013.6751023Scopus ID: 2-s2.0-84898488938OAI: oai:DiVA.org:kth-147257DiVA: diva2:729730
Conference
2013 World Congress on Internet Security, WorldCIS 2013; London; United Kingdom; 9 December 2013 through 12 December 2013
Note

QC 20140626

Available from: 2014-06-26 Created: 2014-06-25 Last updated: 2014-06-26Bibliographically approved

Open Access in DiVA

No full text

Other links

Publisher's full textScopus

Search in DiVA

By author/editor
Stirparo, PasqualeKounelis, Ioannis
By organisation
Network Systems Laboratory (NS Lab)
Engineering and Technology

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 114 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf