SaTC: CORE: Small: Securing Web-to-Mobile Interface Through Characterization and Detection of Malicious Deep Links

SaTC：核心：小型：通过恶意深层链接的表征和检测来保护 Web 到移动接口的安全

• 批准号: 1717028
• 负责人: Danfeng Yao
• 金额: $ 50万
• 依托单位: Virginia Polytechnic Institute and State University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2017
• 资助国家: 美国
• 起止时间: 2017-08-01 至 2021-07-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1717028&HistoricalAwards=false
• 关键词: SaTC; CORE; Small; Securing; Web

With the wide adoption of mobile devices, mobile websites and applications (apps) have become the primary interfaces to access online content. Mobile deep-linking, a key mechanism to index mobile content, has been widely used to enable users to navigate across websites, search engines and mobile apps and become instrumental to improving users' online experience. Unfortunately, mobile deeplinks are designed without security in mind, which allows malicious apps or websites to launch stealthy attacks to hijack user clicks, steal sensitive information and perform phishing attacks. With more apps and websites deep-linked every day, this becomes an emerging security threat to a broad Internet population. This project is developing methodologies and usable tools to measure, analyze and secure mobile deeplinks in today's mobile-web ecosystem.To first understand the emerging security threat, the researchers are developing novel measurement frameworks to map out the empirical connections between mobile apps and the web by automatically extracting mobile deeplinks from the market-scale apps. In addition, the researchers are investigating automated techniques to detect deeplink-based abuse without relying on large-scale ground-truth data. One target approach is to construct deeplink graphs for apps and websites and explore detection techniques using semi-supervised learning and trust prorogation schemes. Finally, the researchers are developing analytics tools to extract context information from mobile deeplinks to enable intelligent alert systems to safeguard the deeplink usage. The researchers are investigating the tradeoffs between security and usability to design safer ways of using deeplinks without sacrificing the usability.

随着移动的设备的广泛采用，移动的网站和应用（app）已经成为访问在线内容的主要界面。移动的深度链接是索引移动的内容的关键机制，已被广泛用于使用户能够在网站、搜索引擎和移动的应用程序之间导航，并有助于改善用户的在线体验。不幸的是，移动的深度链接在设计时没有考虑到安全性，这使得恶意应用程序或网站能够发动隐形攻击，以劫持用户点击，窃取敏感信息并执行网络钓鱼攻击。随着越来越多的应用程序和网站每天深度链接，这成为一个新兴的安全威胁，以广泛的互联网人口。该项目正在开发方法和可用的工具来测量，分析和保护当今移动网络生态系统中的移动的深度链接。为了首先了解新兴的安全威胁，研究人员正在开发新的测量框架，通过从市场规模的应用程序中自动提取移动的深度链接，绘制出移动的应用程序和网络之间的经验联系。此外，研究人员正在研究自动化技术，以检测基于深度链接的滥用，而不依赖于大规模的地面实况数据。一种目标方法是为应用程序和网站构建深度链接图，并使用半监督学习和信任扩展方案探索检测技术。最后，研究人员正在开发分析工具，从移动的深度链接中提取上下文信息，以使智能警报系统能够保护深度链接的使用。研究人员正在研究安全性和可用性之间的权衡，以设计更安全的使用深度链接的方法，而不会牺牲可用性。

项目成果

Ghost Riders: Sybil Attacks on Crowdsourced Mobile Mapping Services

• DOI: 10.1109/tnet.2018.2818073
• 发表时间: 2018-06-01
• 期刊: IEEE-ACM TRANSACTIONS ON NETWORKING
• 影响因子: 3.7
• 作者: Wang, Gang;Wang, Bolun;Zhao, Ben Y.
• 通讯作者: Zhao, Ben Y.

Security Certification in Payment Card Industry: Testbeds, Measurements, and Recommendations

• DOI: 10.1145/3319535.3363195
• 发表时间: 2019-11
• 期刊: Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security
• 作者: Sazzadur Rahaman;Gang Wang;D. Yao

Measuring and Modeling the Label Dynamics of Online Anti-Malware Engines

• 发表时间: 2020
• 作者: Shuofei Zhu;J. Shi;Limin Yang;Boqin Qin;Ziyi Zhang;Linhai Song;Gang Wang

End-to-End Measurements of Email Spoofing Attacks

• 发表时间: 2018
• 作者: Hang Hu;G. Wang

Analyzing Payment-Driven Targeted Q8A Systems

分析支付驱动的定向 Q8A 系统

• DOI: 10.1145/3281449
• 发表时间: 2018
• 期刊: ACM Transactions on Social Computing
• 作者: Jan, Steve T.;Wang, Chun;Zhang, Qing;Wang, Gang
• 通讯作者: Wang, Gang