Browse Prior Art Database

Leakage Detection for Android

IP.com Disclosure Number: IPCOM000215539D
Publication Date: 2012-Mar-06
Document File: 5 page(s) / 59K

Publishing Venue

The IP.com Prior Art Database

Related People

Ian Oliver: AUTHOR [+2]

Abstract

This publication discloses a method that uses the accessibility permission in Android to monitor the entry of sensitive data, such as credentials, credit card formats, mobiles, etc. via a keyboard entry.

This text was extracted from a Microsoft Word document.
This is the abbreviated version, containing approximately 43% of the total text.

Leakage Detection for Android

Ian Oliver  

Subhash Gaonkar

Symantec Corporation

Abstract

This publication discloses a method that uses the accessibility permission in Android to monitor the entry of sensitive data, such as credentials, credit card formats, mobiles, etc. via a keyboard entry.

Copyright © 2010, 2011 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.  For a full list of Symantec trademarks, please visit

http://www.symantec.com/about/profile/policies/trademarks/currentlist.jsp

Any Symantec products described in this document are distributed under licenses restricting their use, copying, distribution, and decompilation/reverse engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors, if any.

THE DOCUMENTATION IS PROVIDED “AS IS” AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE.

Symantec Corporation

350 Ellis Street

Mountain View, CA 94043

United States

http://www.symantec.com

Leakage Detection for Android

Problem Statement

Sensitive data, such as credit cards, credentials, mobile devices, email addresses, security numbers, and other personal information, can be entered by users in low reputation sites via malicious or fake applications.  A method is desired to detect the entry of this kind of sensitive information, for example, for Android.  The desired method should be able to collect the context of the data entry and evaluate the safety of the context of the entry before the data is being further processed.

Publication Description

This publication discloses a method that uses the accessibility permission in Android so that the entry of sensitive known credentials or formats is monitored via a keyboard entry.  When a keyboard entry is detected, the contexts of the entry, such as IP addresses (especially for browsers) and the applications in focus, are evaluated.  An alert is generated if, for example, the credentials do not match the corresponding valid IP addresses, approved applications for the credentials, or known good ranges/applications.  An alert may also be generated if the contexts of the entry do match known information in a blacklist.

The recently accessed IP addresses and the applications in focus are stored in a historically time stamped ordered list.  The ema...