一項Android手機上詐騙簡訊的偵測與防禦機制

以作者查詢圖書館館藏

、以作者查詢臺灣博碩士

、以作者查詢全國書目

、勘誤回報

、線上人數：36

、訪客IP：18.221.244.94

姓名

温立欣(Li-Hsin Wen) 查詢紙本館藏

畢業系所

資訊工程學系在職專班

論文名稱

一項Android手機上詐騙簡訊的偵測與防禦機制
(RSDroid: A Solution to Detect and Block SMS Scams on Android Phones)

相關論文

★ USB WORM KILLER: Cure USB Flash Worms Through a USB Flash Worm	★ Discoverer- Rootkit即時偵測系統
★ SRA系統防禦ARP欺騙劫持路由器	★ A Solution for Detecting and Defending ARP Spoofing on Virtual Machines
★ 針對遠端緩衝區溢位攻擊之自動化即時反擊系統	★ 即時血清系統: 具攻性防壁之自動化蠕蟲治癒系統
★ DNSPD: Entrap Botnets Through DNS Cache Poisoning Detection	★ TransSQL: A Translation and Validation-based Solution for SQL-Injection Attacks
★ A Spam Mail-based Solution for Botnet Detection and Network Bandwidth Protection	★ Shark: Phishing Information Recycling from Spam Mails
★ FFRTD: Beat Fast-Flux by Response Time Differences	★ Antivirus Software Shield against Antivirus Terminators
★ MAC-YURI : My ACcount, YoUr ResponsIbility	★ KKBB: Kernel Keylogger Bye-Bye
★ CIDP Treatment: An Innovative Mobile Botnet Covert Channel based on Caller IDs with P8 Treatment	★ PrivacyGuard：A Kernel-based Solution to Enhance the User Privacy When Using Private Browsing

檔案

[Endnote RIS 格式]

[Bibtex 格式]

[相關文章]

[文章引用]

[完整記錄]

[館藏目錄]

至系統瀏覽論文 ( 永不開放)

摘要(中)

2013年開始，在台灣發生一連串密集的惡意程式入侵Android智慧型手機，綁架受害者手機的簡訊服務，攔截和自動傳送簡訊認證，進行小額付款購買遊戲點數的詐騙事件。
本研究提供一套稱為RSDroid的偵測與防禦機制，是修改自Android的系統框架(Framework)層級的，核心概念是簡訊傳入手機時會偵測簡訊被Abort和Delete事件，以及防禦沒有經由使用者輸入號碼與內容的簡訊被送出，偵測與防禦惡意程式攔截與自動發送小額付款的認證簡訊，避免使用者財物損失。

摘要(英)

In Taiwan, starting from 2013, there have been many SMS scams due to the micropayment authentication vulnerability. A victim’s Android phone is compromised, and the malicious app takes over the SMS service. The malicious app intercepts the incoming authentication SMS and sends text messages without the victim’s knowing. The attacker completes the micropayment, but making the victim pay the bill.
In this paper, we propose an Android framework-level solution, named RSDroid. It inspects all incoming SMS. Once a malicious app intercepts SMS, RSDroid warns the user. RSDroid also monitors all outgoing SMS. It records user input. When sending SMS, it compares the destination number and content with the user input log. It warns user if they are not consistent. RSDroid detects malicious apps intercepting SMS and prevents the malicious apps sending SMS without user input so that it protects users from micropayment scams.

關鍵字(中)

★ 小額付款詐騙簡訊
★ 攔截簡訊
★ Android框架

關鍵字(英)

★ Micropayment Scam
★ Intercept SMS
★ Android Framework

論文目次

中文摘要 i
ABSTRACT ii
誌謝 iii
目錄 iv
圖目錄 List of Figures vi
表目錄 List of Tables vii
一、緒論 1
1-1 研究背景 1
1-2 研究目的 9
二、 Android相關知識 11
2-1 Android介紹 11
2-2 Android的系統架構 12
2-3 Android簡訊接收機制 15
2-4 Android使用者輸入框架 16
2-5 Android簡訊發送機制 17
三、文獻探討 19
3-1 TaintDroid 19
3-2 Aurasium 19
3-3 ThinAV 19
3-4 SmartSiren 20
3-5 Multi-Agent System 20
3-6 IAS 21
四、系統設計與實作 22
4-1 R Part 22
4-1-1 R Part Framework 23
4-1-2 R App 25
4-2 S Part 28
4-2-1 S Part System Service 30
4-2-2 S App 33
五、實驗分析 35
5-1 系統測試 35
5-2 實驗分析與評估 37
六、結論 41
6-1 結論 41
6-2 未來研究 41
七、參考文獻 43

參考文獻

[1] CTIMES/新聞：行動電信業者提供小額付款機制。2002年04月01日，取自http://www.ctimes.com.tw/DispNews-tw.asp?O=HJM41AQPE2MSA-0MN6
[2] 智冠科技/MyCard，2015年01月，取自http://www.soft-world.com/Services/26
[3] 中華電信，2015年01月，取自http://www.cht.com.tw/
[4] International Data Corporation (IDC), Smartphone OS Market Share, Q1 2015, http://www.idc.com/prodserv/smartphone-os-market-share.jsp, May 2015
[5] 威朋行動廣告：行動廣告市場年終報告，2014，取自http://www.vpon.com/images/datafile/Vpon_2014_TW.pdf
[6] Kaspersky Lab, MOBILE CIBER THREATS, http://media.kaspersky.com/pdf/Kaspersky-Lab-KSN-Report-mobile-cyberthreats-web.pdf?_ga=1.91067354.1538643245.1412686339, Oct 2014
[7] Luke：手機病毒大揭密，那些您不知道的事：小心病毒使帳單爆增，2013年09月05日，取自http://blog.aegislab.com/tw/2013/10/03/smsvirus_info/
[8] 張維君：9月份簡訊詐騙電信小額付款案件暴增，2013年10月21日，取自http://www.informationsecurity.com.tw/article/article_detail.aspx?aid=7681#ixzz3d9ZjphHP
[9] 自由時報/新聞：簡訊詐騙頻傳電信業者關閉小額付款功能，2014年05月23日，取自http://news.ltn.com.tw/news/life/breakingnews/1015027
[10] 立法院第8屆第5會期交通委員會第13次全體委員會議議事錄，2014年05月28日，取自http://www.ly.gov.tw/saveAs.action?comtcd=23&fileName=201405291714130.doc
[11] 陳坤裕，龔恩緯，蔡孟翰，嚴浤元，「台灣地區詐騙簡訊網址之回顧」，TANET2014台灣網際網路研討會，論文編號：TANET-2014-SS12-04，財團法人資訊工業策進會資安科技研究所，165反詐騙諮詢專線，2014年10月24日。
[12] Chen, A. C. (2013). SMS Guardian: Protect a Smartphone against Incoming SMS Message Interception
[13] Liao, W. L. (2013). A Solution to Protect Your Android from Sending Unknown SMS Messages
[14] Android Interface, https://source.android.com/devices/, June 2015
[15] 維基百科：硬體抽象層，2014年6月28日，https://zh.wikipedia.org/wiki/%E7%A1%AC%E9%AB%94%E6%8A%BD%E8%B1%A1%E5%B1%A4
[16] ART and Dalvik, https://source.android.com/devices/tech/dalvik/, June 2015
[17] Android Interface Definition Language (AIDL), http://developer.android.com/guide/components/aidl.html, June 2015
[18] AppOpsManager, https://developer.android.com/reference/android/app/AppOpsManager.html, May 2015
[19] Mingshen Sun：Android 4.3 隐藏功能 App Ops 分析，2013年07月31日，取自http://blog.mssun.me/security/android-4-3-app-ops-analysis/
[20] 高志鵬：關於AppOpsManager部分，2014年12月，取自http://gaozp.github.io/tec/2014/12/06/appopsmanager%E9%83%A8%E5%88%86.html
[21] William Enck, Peter Gilbert, Byung-Gon Chun. "TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones." Proceedings of the 9th USENIX conference on Operating systems design and implementation. 2010
[22] Xu, Rubin, Hassen Saïdi, and Ross Anderson. "Aurasium: Practical policy enforcement for android applications." Proceedings of the 21st USENIX Security Symposium. 2012
[23] Jarabek, Chris, David Barrera, and John Aycock. "ThinAV: truly lightweight mobile cloud-based anti-malware." Proceedings of the 28th Annual Computer Security Applications Conference. ACM, 2012
[24] Jerry Cheng, Startsky H.Y. Wong, Hao Yang, songwu Lu. "Smartsiren: virus detection and alert for smartphones." Proceedings of the 5th international conference on Mobile systems, applications and services. ACM, 2007
[25] Alzahrani, A. J., & Ghorbani, A. A. "SMS mobile botnet detection using a multi-agent system: research in progress." Proceedings of the 1st International Workshop on Agents and CyberSecurity, page 2. ACM, 2014.
[26] Derhab, A., Saleem, K., & Youssef, A. "Third line of defense strategy to fight against sms-based malware in android smartphones." In Wireless Communications and Mobile Computing Conference (IWCMC), 2014 International, page 542-547. IEEE.
[27] contagio mobile, http://contagiominidump.blogspot.tw/, June 2015
[28] McAfee for Consumer, http://home.mcafee.com/virusinfo/virusprofile.aspx?key=544065, 20 July 2011
[29] Tim Strazzere, Security Alert: Zsone Trojan found in Android Market, https://blog.lookout.com/blog/2011/05/11/security-alert-zsone-trojan-found-in-android-market, May 11, 2011
[30] Tim Strazzere, GGTracker Technical Tear Down, https://blog.lookout.com/wp-content/uploads/2011/06/GGTracker-Teardown_Lookout-Mobile-Security.pdf, 6 June 2011

指導教授

許富皓(Fu-Hau Hsu)

審核日期

2015-7-23

推文