Knock-Knock: The Unbearable Lightness of Android Notifications

Constantinos Patsakis, Efthimios Alepis

Abstract

Android Notifications can be considered as essential parts in Human-Smartphone interaction and inextricable modules of modern mobile applications that can facilitate User Interaction and improve User Experience. This paper presents how this well-crafted and thoroughly documented mechanism, provided by the OS can be exploited by an adversary. More precisely, we present attacks that result either in forging smartphone application notifications to lure the user in disclosing sensitive information, or manipulate Android Notifications to launch a Denial of Service attack to the users’ device, locally and remotely, rendering them unusable. This paper concludes by proposing generic countermeasures for the discussed security threats.

References

Download


Paper Citation


in Harvard Style

Patsakis C. and Alepis E. (2018). Knock-Knock: The Unbearable Lightness of Android Notifications.In Proceedings of the 4th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-282-0, pages 52-61. DOI: 10.5220/0006603200520061


in Bibtex Style

@conference{icissp18,
author={Constantinos Patsakis and Efthimios Alepis},
title={Knock-Knock: The Unbearable Lightness of Android Notifications},
booktitle={Proceedings of the 4th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2018},
pages={52-61},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006603200520061},
isbn={978-989-758-282-0},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 4th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Knock-Knock: The Unbearable Lightness of Android Notifications
SN - 978-989-758-282-0
AU - Patsakis C.
AU - Alepis E.
PY - 2018
SP - 52
EP - 61
DO - 10.5220/0006603200520061