摘要
研究发现重打包应用通常不修改应用用户交互界面(UI,user interface)的结构,提出一种基于应用UI和程序代码的两阶段检测方法。首先,设计了一种基于UI抽象表示的散列快速相似性检测方法,识别UI相似的可疑重打包应用;然后,使用程序依赖图作为应用特征表示,实现细粒度、精准的代码克隆检测。基于所提方法实现了一种原型系统——SPRD(scalable and precise repacking detection),实验验证所提方法具有良好的可扩展性和准确性,可以有效地应用于百万级应用和亿万级代码的大规模应用市场。
A two stage detection approach which combine application’s UI and program code based on the observation that repackaging applications merely modify the structure of their user interface was proposed.Firstly,a fast hash similarity detection technique based on an abstracted representation of UI to identify the potential visual-similar repackaging applications was designed.Secondly,program dependency graph is used to represent as the feature of app to achieve fine-grained and precise code clone detection.A prototype system,SPRD,was implemented based on the proposed approach.Experimental results show that the proposed approach achieves a good performance in both scalability and accuracy,and can be effectively applied in millions of applications and billions of code detection.
作者
汪润
王丽娜
唐奔宵
赵磊
WANG Run;WANG Li’na;TANG Benxiao;ZHAO Lei(Key Laboratory of Aerospace Information Security and Trusted Computing Ministry of Education, Wuhan University, Wuhan 430072, China;School of Computer, Wuhan University, Wuhan 430072, China;School of Cyber Science and Engineering, Wuhan University, Wuhan 430072, China)
出处
《通信学报》
EI
CSCD
北大核心
2018年第3期159-171,共13页
Journal on Communications
基金
国家自然科学基金资助项目(No.U1536204
No.61672394
No.61373169
No.61672393)
国家高技术研究发展计划("863"计划)基金资助项目(No.2015AA016004)~~
关键词
重打包
代码克隆
用户界面
程序依赖图
安全与隐私
repackaging
code clone
user interface
program dependency graph
security and privacy
