Mobile Data Analysis using Dynamic Binary Instrumentation and Static Analysis

Abstract

Mobile classified data leakage poses a threat to the DoD programs and missions. Security experts must know the format of application data, in order to properly classify mobile applications. This research presents the DBIMAFIA methodology to identify stored data formats. DBIMAFIA uses DBI and static analysis to uncover the structure of mobile application data and validate the results with traditional reverse engineering methods. DBIMAFIA was applied to fifteen popular Android applications and revealed the format of stored data. Notably, user PII leakage is identified in the Rago Games application. The application's messaging service exposes the full name, birthday, and city of any user of the Rago Games application. These findings on how Haga Games uses ObjectBox library to store data in custom file formats can be applied more broadly to any mobile, IoT, or SCADA device or application using the ObjectBox library. Furthermore, the DBIMAFIA methodology can be more broadly defined to identify stored data within any Android application.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Mar 26, 2020
Accession Number
AD1096943

Entities

People

  • Christopher Dukharm

Organizations

  • Air Force Institute of Technology

Tags

Communities of Interest

  • Biomedical
  • Cyber
  • Sensors
  • Weapons Technologies

DTIC Thesaurus Topics

  • Air Force
  • Application Software
  • Computer Programming
  • Computer Programs
  • Computers
  • Database Management Systems
  • Department Of Defense
  • Governments
  • Internet Of Things
  • Mobile Devices
  • Mobile Operating Systems
  • Mobile Phones
  • Operating Systems
  • Smartphones
  • Social Media
  • United States
  • United States Government

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Database Systems and Applications
  • Military Logistics and Supply Chain Management

Technology Areas

  • 5G