Exploring Android Obfuscators and Deobfuscators: An Empirical Investigation-Reference-Cited by-同舟云学术

Exploring Android Obfuscators and Deobfuscators: An Empirical Investigation

Published:2024-06-10 Issue:12 Volume:13 Page:2272
ISSN:2079-9292
Container-title:Electronics
language:en
Short-container-title:Electronics

Author:

Ebad Shouki A.¹^ORCID,Darem Abdulbasit A.¹^ORCID

Affiliation:

1. Department of Computer Science, Faculty of Science, Northern Border University, Arar 91431, Saudi Arabia

Abstract

Researchers have proposed different obfuscation transformations supported by numerous smartphone protection tools (obfuscators and deobfuscators). However, there is a need for a comprehensive study to empirically characterize these tools that belong to different categories of transformations. We propose a property-based framework to systematically classify twenty cutting-edge tools according to their features, analysis type, programming language support, licensing, applied obfuscation transformations, and general technical drawbacks. Our analysis predominantly reveals that very few tools work at the dynamic level, and most tools (which are static-based) work for Java or Java-based ecosystems (e.g., Android). The findings also show that the widespread adoption of renaming transformations is followed by formatting and code injection. In addition, this paper pinpoints the technical shortcomings of each tool; some of these drawbacks are common in static-based analyzers (e.g., resource consumption), and other drawbacks have negative effects on the experiment conducted by students (e.g., a third-party library involved). According to these critical limitations, we provide some timely recommendations for further research. This study can assist not only Android developers and researchers to improve the overall health of their apps but also the managers of computer science and cybersecurity academic programs to embed suitable obfuscation tools in their curricula.

Funder

Northern Border University, Arar, KSA

Publisher

MDPI AG

Link

https://www.mdpi.com/2079-9292/13/12/2272/pdf

Reference20 articles.

1. Rauti, S., and Leppänen, V. (2018, January 26–27). A comparison of online JavaScript obfuscators. Proceedings of the 2018 International Conference on Software Security and Assurance (ICSSA), Seoul, Republic of Korea.

2. Measuring software obfuscation quality—A systematic literature review;Ebad;IEEE Access,2021

3. Sherif, A. (2024, June 08). Mobile Operating Systems—Statistics & Facts, 10 January 2024. Available online: https://www.statista.com/topics/3778/mobile-operating-systems/#topicOverview.

4. Wang, H., Li, H., Li, L., Guo, Y., and Xu, G. (June, January 27). Why are android apps removed from google play? A large-scale empirical study. Proceedings of the 15th International Conference on Mining Software Repositories, Gothenburg, Sweden.

5. Collberg, C., Thomborson, C., and Low, D. (1997). A Taxonomy of Obfuscating Transformations, Department Computer Science, University of Auckland. Available online: https://researchspace.auckland.ac.nz/bitstream/handle/2292/3491/TR148.pdf.