Skip to main content
SpringerLink
Log in
Book cover

International Workshop on Security

IWSEC 2019: Advances in Information and Computer Security pp 241–250Cite as

(Short Paper) Method for Preventing Suspicious Web Access in Android WebView

  • Conference paper
  • First Online:

  • 667 Accesses

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 11689))

Abstract

WebView is commonly used by applications on the Android OS. Given that WebView is used as a browsing component on applications, they can be attacked via the web. Existing security mechanisms mainly focus on web browsers; hence, securing WebView is an important challenge. We proposed and implemented a method for preventing suspicious web access in Android WebView. Attackers distribute their malicious content including malicious applications, potentially unwanted programs, and coin miners, by inserting contents into a web page. Because loading malicious content involves HTTP communication, our proposed method monitors HTTP communication by WebView and blocks suspicious web accesses. To apply the proposed method to widely used applications, we implemented our method inside WebView. We also evaluated the proposed method with some popular applications and confirmed that the method can block designated web content without impeding the functionality of applications.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   59.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   79.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

References

  1. StatCounter: Mobile operating system market share worldwide. http://gs.statcounter.com/os-market-share/mobile/worldwide. Accessed 2 Apr 2019

  2. Acar, Y., Backes, M., Bugiel, S., Fahl, S., McDaniel, P., Smith, M.: Sok: Lessons learned from android security research for appified software platforms. In: 2016 IEEE Symposium on Security and Privacy (SP), pp. 433–451. IEEE (2016)

    Google Scholar 

  3. Hur, J.B., Shamsi, J.A.: A survey on security issues, vulnerabilities and attacks in android based smartphone. In: 2017 International Conference on Information and Communication Technologies (ICICT), pp. 40–46. IEEE (2017). https://doi.org/10.1109/ICICT.2017.8320163

  4. Google: Safe Browsing. https://safebrowsing.google.com/. Accessed 2 Apr 2019

  5. Chin, E., Wagner, D.: Bifocals: analyzing webview vulnerabilities in android applications. In: Kim, Y., Lee, H., Perrig, A. (eds.) WISA 2013. LNCS, vol. 8267, pp. 138–159. Springer, Cham (2014). https://doi.org/10.1007/978-3-319-05149-9_9

    Chapter  Google Scholar 

  6. Zhu, X., Li, J.: AdCapsule: Practical confinement of advertisements in android applications. In: IEEE Transactions on Dependable and Secure Computing. IEEE (2018). https://doi.org/10.1109/TDSC.2018.2814999

  7. Alan, H.F., Kaur, J.: Can android applications be identified using only TCP/IP headers of their launch time traffic? In: Proceedings of the 9th ACM Conference on Security & Privacy in Wireless and Mobile Networks, pp. 61–66. ACM (2016). https://doi.org/10.1145/2939918.2939929

  8. Imamura, Y., Uekawa, H., Ishihara, Y., Sato, M., Yamauchi, T.: Web access monitoring mechanism for android webview. In: Proceedings of the Australasian Computer Science Week Multiconference, pp. 1:1–1:8. ACM (2018). https://doi.org/10.1145/3167918.3167942

  9. Dou, Z., Khalil, I., Khreishah, A., Al-Fuqaha, A., Guizani, M.: Systematization of knowledge (SoK): a systematic review of software-based web phishing detection. IEEE Commun. Surv. Tutor. 19(4), 2797–2819 (2017). https://doi.org/10.1109/COMST.2017.2752087

    Article  Google Scholar 

  10. Lever, C., Kotzias, P., Balzarotti, D., Caballero, J., Antonakakis, M.: A lustrum of malware network communication: evolution and insights. In: 2017 IEEE Symposium on Security and Privacy (SP), pp. 788–804. IEEE (2017)

    Google Scholar 

  11. Rüth, J., Zimmermann, T., Wolsing, K., Hohlfeld, O.: Digging into browser-based crypto mining. In: Proceedings of the Internet Measurement Conference 2018, pp. 70–76. ACM (2018). https://doi.org/10.1145/3278532.3278539

  12. Coinhive: Coinhive. https://coinhive.com/. Accessed 3 Dec 2018

  13. Check Point: 2017 Global Cyber Attack Trends Report. https://research.checkpoint.com/cyber-attack-trends-mid-year-report/. Accessed 2 Apr 2019

  14. Segura, J.: Drive-by cryptomining campaign targets millions of Android users. https://blog.malwarebytes.com/threat-analysis/2018/02/drive-by-cryptomining-campaign-attracts-millions-of-android-users/. Accessed 2 Apr 2019

  15. Krebs, B.: Who and what is coinhive? https://krebsonsecurity.com/2018/03/who-and-what-is-coinhive/. Accessed 2 Apr 2019

Download references

Acknowledgement

The research results have been achieved by “WarpDrive: Web-based Attack Response with Practical and Deployable Research InitiatiVE,” the Commissioned Research of National Institute of Information and Communications Technology (NICT), Japan.

Author information

Authors and Affiliations

  1. Graduate School of Natural Science and Technology, Okayama University, Okayama, 700-8530, Japan

    Masaya Sato, Yuta Imamura, Rintaro Orito & Toshihiro Yamauchi

Authors
  1. Masaya Sato
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yuta Imamura
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Rintaro Orito
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Toshihiro Yamauchi
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding authors

Correspondence to Masaya Sato or Toshihiro Yamauchi .

Editor information

Editors and Affiliations

  1. National Institute of Advanced Industrial Science and Technology, Tokyo, Japan

    Nuttapong Attrapadung

  2. NTT Security (Japan) KK, Tokyo, Japan

    Takeshi Yagi

Rights and permissions

Reprints and permissions

Copyright information

© 2019 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Sato, M., Imamura, Y., Orito, R., Yamauchi, T. (2019). (Short Paper) Method for Preventing Suspicious Web Access in Android WebView. In: Attrapadung, N., Yagi, T. (eds) Advances in Information and Computer Security. IWSEC 2019. Lecture Notes in Computer Science(), vol 11689. Springer, Cham. https://doi.org/10.1007/978-3-030-26834-3_14

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-26834-3_14

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-26833-6

  • Online ISBN: 978-3-030-26834-3

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation