Saturday, 4 February 2012

Google's New Security Feature "Bouncer" in Android Market

0 comments


On Thursday Google revealed a new security feature for the Android Market store that’s designed to protect Android users from malware. But does the service go far enough?


The new service, called ‘Bouncer,’ is designed to quietly and automatically scan the entire Android Market (and all new apps uploaded) for malware.


Hiroshi Lockheimer, VP of engineering for Android, explains how it works:


The service performs a set of analyses on new applications, applications already in Android Market, and developer accounts. Here’s how it works: once an application is uploaded, the service immediately starts analyzing it for known malware, spyware and trojans. It also looks for behaviors that indicate an application might be misbehaving, and compares it against previously analyzed apps to detect possible red flags. We actually run every application on Google’s cloud infrastructure and simulate how it will run on an Android device to look for hidden, malicious behavior. We also analyze new developer accounts to help prevent malicious and repeat-offending developers from coming back.


Lockheimer also revealed hat this service has already been operational ‘for a while now’ and that between the first and second halves of 2011 Google saw a 40% decrease in the number of potentially-malicious downloads from Android Market.


But is this enough? BitDefender’s chief threat researcher Catalin Cosoi doesn’t think so, and believes that malware writers will find a way to circumvent the screening mechanism:


Also, based on our experience with malware analysis, malware writers will seek a way around security. For instance, in the PC malware world, we use virtual machines to analyse behavior of different samples we discover. Obviously, in time, malware writers added different routines to detect if the virus runs in a real computer or in a virtual environment, and they modified their software to act legit when running in a control environment. We might see the same phenomenon here, as Bouncer is a service that will emulate all apps uploaded on the Android Market. Not to mention that the Android API offers the possibility to detect if the app runs in an emulator or directly on the devices. So there is a high chance that we’ll see apps behaving correctly when used on a simulator and turning malicious when used on the mobile device.


Another more immediate problem with ‘Bouncer’ is that the service doesn’t scan for what’s known as ‘greyware,’ a category that includes hings such as spyware, adware, and aggressive ad platforms. This stuff isn’t technically malware, but it’s also not desirable to have it installed on your handset either (it’s annoying and can suck bandwidth).

Leave a Reply

Labels

4G LTE Samsung Galaxy Note (3) 4G Tablet (2) Amazon (2) Android 4.0 (7) Android 4.0.2 (1) Android 5.0 (1) Android Accessories (2) Android Alternative (1) Android Apps (4) Android Car Apps (1) Android Games (8) Android Market (1) Android Mp3 Player (2) Android Security (1) Android TV (2) Android tablet (10) Android watch (2) AndroidPit (1) Angry Birds (1) Anti-Apple (2) Arc HD (3) Ascend P1 (1) Ascend P1 s (1) Audio Dock (1) Battery test (1) Billabong (1) Break (1) CES (12) CES 2012 (29) Camera Shots (1) Canada (2) Captivate Gingerbread 2.3 update (1) ClockworkMod (2) Complaint Aakash Tablet (1) DA-E750 (1) Defy Mini (2) Desire HD (1) Docs (1) Droid 4 (3) Droid RAZR MAXX (3) EVi (1) Easter Egg (1) Eco-Friendly (1) Eeepad Transformer Prime (3) Excite X10 (2) Facebook (2) Flyer (1) Focus Electric (1) Ford Focus (1) Galaxy (15) Galaxy Nexus (2) Galaxy Note (8) Galaxy Note 10.1 (2) Galaxy Note US (3) Galaxy Note US vs European (1) Galaxy S2 (1) Galaxy Tab 7.7 (1) Game (2) Gameloft (2) Garmin (1) Gingerbread (5) Google (9) Google TV (2) Google Wallet (1) Grand Theft Auto 3 (1) HTC (13) HTC Sensation White (2) HTC Sensation XE (2) HTCdev (1) Honeycomb (1) How To (29) Huawei (1) HzO Waterblock (1) ICS (8) Ice Cream Sandwich (28) India (2) Intel (2) Intel Android Smartphone (1) Intel's (1) Japan (2) Jelly bean (6) Jelly beans (1) Kindle (1) Kumquat ST25i (1) LG (12) LG TV (1) LTE (1) LTE 4G (1) Leaked (7) Leaked Ice Cream Sandwich Rom (1) Lenovo (1) Lenovo K800 (1) Lenovo ThinkPad (1) Lumia 710 Android phone (1) MWC (4) Magic-Pro iGoGo TV (1) Mid-Range Android Phone (1) Motoluxe (1) Motorola (15) Mp3 player (1) Myford Mobile App (1) NOVO 7 (1) Nazomi (1) New Launch (21) News (191) Nexus (3) Nokia (1) Nokia Android phone (1) Nuvi (1) Nypon LT22i (1) O2 (1) Optimus L3 (1) Overlapping App Windows (1) Padfone (1) Panasonic (1) Pantech (1) Patent (2) Pepper MT27i (1) Philips (1) Phone4u (1) Photos (2) Play Game (2) Prevent (1) Price (1) Protest (1) Pure Music (1) RAZR Developers Edition (1) ROM (1) Release Date (1) Review (13) Rogers (1) Rootkeeper (1) Samsung (50) Samsung Droid Charge (1) Samsung Galaxy Nexus (1) Samsung Galaxy Note (4) Samsung Galaxy S (2) Samsung Galaxy S 4 (6) Samsung Galaxy S 2 (3) Samsung Galaxy S 3 (4) Samsung Galaxy S Advance (2) Samsung Galaxy S Aviator (1) Samsung Galaxy S II (2) Samsung Galaxy S2 Plus (1) Samsung Galaxy Tab (3) Siri (1) Smart Wirless Headset Pro (1) SmartTags (1) SmartWatch (2) Smartphone link (1) Sony (12) Sony Ericsson (11) Sony's Smartwatch (2) South Korea (1) Spectrum (3) Sprint (2) Tab 7.7 LTE 4G (1) Thinnest Tablet (3) Three UK (3) Toshiba (4) UK (3) US (3) USA (3) Ubislate (1) Unplugged (1) Value pack update (1) Verison (1) Viewsonic (2) Washing machine (1) Waterproof tablet (1) Waterproofing (3) White (1) WiFi (1) WindRiver (1) XDA Developers (2) Xoom (2) Xperia (7) Xperia Active (2) Xperia NX (1) Xperia Play (1) Xperia S (4) Xperia S UK (1) Xperia goodies (1) Xyboard (2) ZTE (2) app review (7) asus (9) attt (2) bootloader (4) downloads (4) good deal (1) gps (1) itunes (1) nexus tablet (1) optimus (3) root (2) tab (1) tablet (10) unlock (1) unlocked (1) verizon (3)