Detection of Mobile Applications Leaking Sensitive Data

Canbay Y., Ulker M., SAĞIROĞLU Ş.

5th International Symposium on Digital Forensic and Security (ISDFS), Tirgu Mures, Romania, 26 - 28 April 2017 identifier identifier

  • Publication Type: Conference Paper / Full Text
  • Volume:
  • Doi Number: 10.1109/isdfs.2017.7916515
  • City: Tirgu Mures
  • Country: Romania
  • Gazi University Affiliated: Yes


Smart phones are the most popular and used devices by people. They host numerous types of data which can be classified as public and private. It is a new phenomenon to develop some malicious applications to exfiltrate personal data from smart phones. Hence personal data on these devices such as short messages, contacts, photos, videos, GPS locations, etc. require a specialized security mechanism which protects them from being leaked by malicious applications. The main problem is the disclosure of sensitive information when mobile applications try to access them via android permissions. This situation tells us that these mobile applications will probably leak the sensitive data. Therefore, some solutions especially considering data leakage on smart phones are required. This paper has two goals which are detecting the applications leak sensitive data and analyzing benign applications whether they have malicious intents or not.