Save 37% off PRO during our Black Friday Sale! »

Seguridad en las aplicaciones Android

D195407e71e25241001971f9fa5cca45?s=47 Alvaro
April 26, 2016
Technology
0
47

Seguridad en las aplicaciones Android

D195407e71e25241001971f9fa5cca45?s=128

Alvaro

April 26, 2016
Tweet

More Decks by Alvaro

See All by Alvaro
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
3.1k
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
410
D195407e71e25241001971f9fa5cca45?s=48 pwntester
6
25k
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
6.7k
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
180
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
69
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
5.1k
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
160
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
560

Other Decks in Technology

See All in Technology
140494d272a4d89883a94fdfdb29dea2?s=48 oracle4engineer
PRO
0
120
3499a1d71fa70b8ee44816ca9e7329fe?s=48 bells17
0
340
Ab628671841774343b1020f22f712069?s=48 mouson
0
380
D907136acebc72f1df878541b26f271a?s=48 pichuang
0
670
11ab209b6dcacad4e5aa841af533a937?s=48 katahiro12345
0
110
7a29c02251394fc05ebd88c631c562dc?s=48 takufujii
0
1.4k
A60224e356e52f631bec70bc9df52889?s=48 empitsu
2
2.3k
5dbaf4015e7f249ab21b195ced8e9e46?s=48 masatoshitada
1
620
2d1ae5ea9354a50d87b46f4503d11f4e?s=48 tuhin1729
1
330
39660b800174f05657f47a30ff8258c7?s=48 msyksphinz
3
1.3k
7e6a435700dda6cdb22105d601f20892?s=48 picardparis
4
2.9k
942bb606679caf4c57b38927f83178e1?s=48 qsona
16
5.9k

Featured

See All Featured
864a009ac73600c7c02e1f26629dd989?s=48 paigeccino
7
420
016edace78ffe826f2348d1e0c504afd?s=48 maggiecrowley
16
960
465724d73fe3a92c0879fdfb43a3a6f3?s=48 philhawksworth
195
9.1k
1f74b13f1e5c6c69cb5d7fbaabb1e2cb?s=48 sferik
611
56k
A9704266587836f7e784235e5073b93e?s=48 jmmastey
21
5.2k
Af6a12710770ad9a7cfd08c97efd40d3?s=48 pedronauck
655
120k
A9179349dd2bdc67f377719f56d85656?s=48 garrettdimon
294
110k
C9b18d9dff88a9dd2393364c2b3b21bd?s=48 colly
71
3.2k
Fde6c3a50ca518a909ef35c22c0ee0e4?s=48 destraynor
148
20k
88bc30284c6a424b63a92aad27d0ba36?s=48 jnunemaker
PRO
44
5k
Aebc2d07a50011e2a30d38435fde564a?s=48 jrom
120
7.5k
E14f55d3f939977cecbf51b64ff6f861?s=48 keithpitt
405
20k

Transcript

  1. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. Los smartphones nos han invadido, ¿y ahora qué? Seguridad en las aplicaciones Android Alvaro Muñoz | Software Security Consultant | @pwntester HP Enterprise Security Products

  2. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 2 Familiar Model

  3. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 3 Can’t We All Get Along? Your app  Formal communication - Inter-application - Intra-application - With the OS  A new trust boundary

  4. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 4 Android Talk OS App 2 App 1 App 3 Service 2 Service 1 Service Content Provider Broadcast Receiver Activity

  5. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 5 Google Android Vulnerabilities 1 Intent Hijacking 2 Intent Spoofing 3 Sticky Broadcast Tampering 4 Insecure Storage 5 Insecure Network Communication 6 SQL Injection 7 Promiscuous Privileges

  6. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 6 Description: Malicious app intercepts an intent bound for another app to compromise data or alter behavior Cause: Implicit intents (do not require strong permissions to receive) Fix: Explicit intents and receiver permissions Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  7. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 7 Google Android Vulnerabilities Showtime Search Results UI Handles Actions: willUpdateShowtimes, showtimesNoLocationError Implicit Intent Action: willUpdateShowtimes IMDb App Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  8. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 8 Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  9. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 9 Google Android Vulnerabilities Handles Actions: willUpdateShowtimes, showtimesNoLocationError Eavesdropping App Malicious Receiver Showtime Search Results UI Handles Actions: willUpdateShowtimes, showtimesNoLocationError Implicit Intent Action: willUpdateShowtimes IMDb App Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  10. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 10 Description: Malicious app spoofs a legitimate intent to inject data or alter behavior Cause: Public components (necessary to receive implicit intents) Fix: Explicit intents and receiver permissions Sensitive operations in private components Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  11. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 11 Google Android Vulnerabilities Malicious Component Action: showtimesNoLocationError Spoofing App Showtime Search Results UI Handles Actions: willUpdateShowtimes, showtimesNoLocationError IMDb App Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  12. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 12 Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  13. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 13 Description: Persistent intents can be accessed and removed by malicious apps Cause: BROADCAST_STICKY allows to full access to any sticky broadcasts Fix: Explicit, non-sticky broadcasts and receiver permissions Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  14. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 14 Google Android Vulnerabilities Requests BROADCAST_STICKY Permission Sticky Broadcasts (intents) Malicious App Victim App SB2 ? Receiver (expects SB2) SB1 SB3 Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  15. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 15 Empirical Results: DEFCON ‘11 Vulnerability Type % of Apps 1. Intent Hijacking 50% 2. Intent Spoofing 40% 3. Sticky Broadcast Tampering 6% 4. Insecure Storage 28% 5. Insecure Communication N/A 6. SQL Injection 17% 7. Promiscuous Privileges 31%

  16. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 16 Bonus: OWASP iGoat iGoat 1.0 documents 5 vulnerabilities We find 15+ iGoat 1.2 documents 7 vulnerabilities We find 20+

  17. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. Gracias Alvaro Muñoz | Software Security Consultant | @pwntester HP Enterprise Security Products