Knock-Knock: The unbearable lightness of Android Notifications

01/24/2018
by   Constantinos Patsakis, et al.
0

Android Notifications can be considered as essential parts in Human-Smartphone interaction and inextricable modules of modern mobile applications that can facilitate User Interaction and improve User Experience. This paper presents how this well-crafted and thoroughly documented mechanism, provided by the OS can be exploited by an adversary. More precisely, we present attacks that result either in forging smartphone application notifications to lure the user in disclosing sensitive information, or manipulate Android Notifications to launch a Denial of Service attack to the users' device, locally and remotely, rendering them unusable. This paper concludes by proposing generic countermeasures for the discussed security threats.

READ FULL TEXT
POST COMMENT

Comments

There are no comments yet.

Authors

page 9

02/20/2013

Capturing Information Flows inside Android and Qemu Environments

The smartphone market has grown so wide that it assumed a strategic rele...
03/26/2019

Hearing your touch: A new acoustic side channel on smartphones

We present the first acoustic side-channel attack that recovers what use...
08/12/2018

WiFiScout: A Crowdsensing WiFi Advisory System with Gamification-based Incentive

As mobile crowdsensing techniques are steering many smart-city applicati...
10/29/2019

Smartphone and the changing practices of face-to-face interaction

Smartphone use has grown rapidly, but the ways it shapes concurrent face...
08/30/2018

SonarSnoop: Active Acoustic Side-Channel Attacks

We report the first active acoustic side-channel attack. Speakers are us...
05/24/2019

Scan-and-Pay on Android is Dangerous

Mobile payments have increased significantly in the recent years and one...
08/19/2016

POLYPATH: Supporting Multiple Tradeoffs for Interaction Latency

Modern mobile systems use a single input-to-display path to serve all ap...
This week in AI

Get the week's most popular data science and artificial intelligence research sent straight to your inbox every Saturday.