Seguridad en las aplicaciones Android

D195407e71e25241001971f9fa5cca45?s=47 Alvaro
April 26, 2016
Technology
0
38

Seguridad en las aplicaciones Android

D195407e71e25241001971f9fa5cca45?s=128

Alvaro

April 26, 2016
Tweet

More Decks by Alvaro

See All by Alvaro
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
2.2k
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
300
D195407e71e25241001971f9fa5cca45?s=48 pwntester
5
19k
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
4.9k
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
140
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
49
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
3.6k
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
110
D195407e71e25241001971f9fa5cca45?s=48 pwntester
0
310

Other Decks in Technology

See All in Technology
E91a24de5f8858932171b35bd47c8485?s=48 rueian
0
220
4bbea750321e2a5f5611cca47b5a8788?s=48 sasaguchi
2
1k
380bcd2ab751f5838abd8219df53e5fe?s=48 tomoki10
0
1.1k
Fccb5974b63d64636a7c90faf3bab51f?s=48 kikuzo
10
1.4k
E783e2d26dc6388730b73ced1348c638?s=48 vkbaba
0
200
519602c480abb8e67e763a719b77d99b?s=48 hayatoishida
2
350
961126d9892ae4df45249529a0721571?s=48 sugamasao
2
490
0d29d155ce5c5a93ed46363626da3ea7?s=48 ocise
1
1.8k
96d70e4d1094a914c1b6436b9e61962c?s=48 ayehninnkhine
0
110
9e7a653ed313b3da4b263a772bfc5026?s=48 clustervr
0
190
928b1395afedebb5ee48d44ab917c5f1?s=48 ryusa
1
320
2ec42cd8400b1e8e5ba125936c1d27e9?s=48 smiyaza
0
180

Featured

See All Featured
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
55
5.3k
25c7c18223fb42a4c6ae1c8db6f50f9b?s=48 mojombo
356
62k
C9b18d9dff88a9dd2393364c2b3b21bd?s=48 colly
65
2.9k
E14f55d3f939977cecbf51b64ff6f861?s=48 keithpitt
399
20k
5ce91fa49a613cbc3e20d5f96856473f?s=48 edds
55
9.3k
027d1ebf66cc039a0bd3b55eeadbe75d?s=48 sachag
266
16k
Fde6c3a50ca518a909ef35c22c0ee0e4?s=48 destraynor
145
19k
20bfe76b3d6105641f879fe45cfc9272?s=48 bkeepers
319
53k
E13c31390e0369fcd5972292ce0e7b92?s=48 jnunemaker
PRO
40
4.4k
11c84dff30266b907714802088852677?s=48 jasonvnalue
80
7.9k
7fa6101cd43067653cf4ac6c7ca54305?s=48 akmur
252
19k
A60068bce2e73de3a37ca9d2dbe36092?s=48 bryan
100
11k

Transcript

  1. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. Los smartphones nos han invadido, ¿y ahora qué? Seguridad en las aplicaciones Android Alvaro Muñoz | Software Security Consultant | @pwntester HP Enterprise Security Products

  2. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 2 Familiar Model

  3. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 3 Can’t We All Get Along? Your app  Formal communication - Inter-application - Intra-application - With the OS  A new trust boundary

  4. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 4 Android Talk OS App 2 App 1 App 3 Service 2 Service 1 Service Content Provider Broadcast Receiver Activity

  5. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 5 Google Android Vulnerabilities 1 Intent Hijacking 2 Intent Spoofing 3 Sticky Broadcast Tampering 4 Insecure Storage 5 Insecure Network Communication 6 SQL Injection 7 Promiscuous Privileges

  6. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 6 Description: Malicious app intercepts an intent bound for another app to compromise data or alter behavior Cause: Implicit intents (do not require strong permissions to receive) Fix: Explicit intents and receiver permissions Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  7. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 7 Google Android Vulnerabilities Showtime Search Results UI Handles Actions: willUpdateShowtimes, showtimesNoLocationError Implicit Intent Action: willUpdateShowtimes IMDb App Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  8. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 8 Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  9. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 9 Google Android Vulnerabilities Handles Actions: willUpdateShowtimes, showtimesNoLocationError Eavesdropping App Malicious Receiver Showtime Search Results UI Handles Actions: willUpdateShowtimes, showtimesNoLocationError Implicit Intent Action: willUpdateShowtimes IMDb App Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  10. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 10 Description: Malicious app spoofs a legitimate intent to inject data or alter behavior Cause: Public components (necessary to receive implicit intents) Fix: Explicit intents and receiver permissions Sensitive operations in private components Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  11. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 11 Google Android Vulnerabilities Malicious Component Action: showtimesNoLocationError Spoofing App Showtime Search Results UI Handles Actions: willUpdateShowtimes, showtimesNoLocationError IMDb App Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  12. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 12 Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  13. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 13 Description: Persistent intents can be accessed and removed by malicious apps Cause: BROADCAST_STICKY allows to full access to any sticky broadcasts Fix: Explicit, non-sticky broadcasts and receiver permissions Google Android Vulnerabilities Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  14. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 14 Google Android Vulnerabilities Requests BROADCAST_STICKY Permission Sticky Broadcasts (intents) Malicious App Victim App SB2 ? Receiver (expects SB2) SB1 SB3 Intent Spoofing Sticky Broadcast Tampering Insecure Storage Insecure Network Communication SQL Injection Promiscuous Privileges Intent Hijacking

  15. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 15 Empirical Results: DEFCON ‘11 Vulnerability Type % of Apps 1. Intent Hijacking 50% 2. Intent Spoofing 40% 3. Sticky Broadcast Tampering 6% 4. Insecure Storage 28% 5. Insecure Communication N/A 6. SQL Injection 17% 7. Promiscuous Privileges 31%

  16. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. 16 Bonus: OWASP iGoat iGoat 1.0 documents 5 vulnerabilities We find 15+ iGoat 1.2 documents 7 vulnerabilities We find 20+

  17. © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained

    herein is subject to change without notice. Gracias Alvaro Muñoz | Software Security Consultant | @pwntester HP Enterprise Security Products