TIIS (Çѱ¹ÀÎÅͳÝÁ¤º¸ÇÐȸ)
ÇѱÛÁ¦¸ñ(Korean Title) |
A Probabilistic Test based Detection Scheme against Automated Attacks on Android In-app Billing Service |
¿µ¹®Á¦¸ñ(English Title) |
A Probabilistic Test based Detection Scheme against Automated Attacks on Android In-app Billing Service |
ÀúÀÚ(Author) |
Heeyoul Kim
|
¿ø¹®¼ö·Ïó(Citation) |
VOL 13 NO. 03 PP. 1659 ~ 1673 (2019. 03) |
Çѱ۳»¿ë (Korean Abstract) |
|
¿µ¹®³»¿ë (English Abstract) |
Android platform provides In-app Billing service for purchasing valuable items inside mobile applications. However, it has become a major target for attackers to achieve valuable items without actual payment. Especially, application developers suffer from automated attacks targeting all the applications in the device, not a specific application. In this paper, we propose a novel scheme detecting automated attacks with probabilistic tests. The scheme tests the signature verification method in a non-deterministic way, and if the method was replaced by the automated attack, the scheme detects it with very high probability. Both the analysis and the experiment result show that the developers can prevent their applications from automated attacks securely and efficiently by using of the proposed scheme.
|
Å°¿öµå(Keyword) |
In-app Billing
automated attack
probabilistic test
Android
security
|
ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|