The secret life of software applications


Autoria(s): Dell'Aguzzo, Paolo
Contribuinte(s)

D'Angelo, Gabriele

Data(s)

09/10/2014

Resumo

One of the most undervalued problems by smartphone users is the security of data on their mobile devices. Today smartphones and tablets are used to send messages and photos and especially to stay connected with social networks, forums and other platforms. These devices contain a lot of private information like passwords, phone numbers, private photos, emails, etc. and an attacker may choose to steal or destroy this information. The main topic of this thesis is the security of the applications present on the most popular stores (App Store for iOS and Play Store for Android) and of their mechanisms for the management of security. The analysis is focused on how the architecture of the two systems protects users from threats and highlights the real presence of malware and spyware in their respective application stores. The work described in subsequent chapters explains the study of the behavior of 50 Android applications and 50 iOS applications performed using network analysis software. Furthermore, this thesis presents some statistics about malware and spyware present on the respective stores and the permissions they require. At the end the reader will be able to understand how to recognize malicious applications and which of the two systems is more suitable for him. This is how this thesis is structured. The first chapter introduces the security mechanisms of the Android and iOS platform architectures and the security mechanisms of their respective application stores. The Second chapter explains the work done, what, why and how we have chosen the tools needed to complete our analysis. The third chapter discusses about the execution of tests, the protocol followed and the approach to assess the “level of danger” of each application that has been checked. The fourth chapter explains the results of the tests and introduces some statistics on the presence of malicious applications on Play Store and App Store. The fifth chapter is devoted to the study of the users, what they think about and how they might avoid malicious applications. The sixth chapter seeks to establish, following our methodology, what application store is safer. In the end, the seventh chapter concludes the thesis.

Formato

application/pdf

Identificador

http://amslaurea.unibo.it/7405/1/DellAguzzo_Paolo_Tesi.pdf

Dell'Aguzzo, Paolo (2014) The secret life of software applications. [Laurea], Università di Bologna, Corso di Studio in Scienze e tecnologie informatiche [L-DM270] - Cesena <http://amslaurea.unibo.it/view/cds/CDS8013/>

Relação

http://amslaurea.unibo.it/7405/

Direitos

info:eu-repo/semantics/openAccess

Palavras-Chave #Mobile Security, Mobile App Security, App Stores, Android Security, iOS Security #scuola :: 843899 :: Scienze #cds :: 8013 :: Scienze e tecnologie informatiche [L-DM270] - Cesena #sessione :: seconda
Tipo

PeerReviewed