TY  - JOUR
T1  - An Effective Technique for Detecting Vulnerabilities in Android Device Drivers
AU  - Chung, Youngki 
AU  - Cho, Seong-je 
JO  - Journal of KIISE, JOK
PY  - 2016
DA  - 2016/1/14
DO  - 
KW  - device driver
KW  - static analysis
KW  - dynamic analysis
KW  - vulnerability
KW  - Android
AB  - Android- and Linux-based embedded systems require device drivers, which are structured and built in kernel functions. However, device driver software (firmware) provided by various 3rd parties is not usually checked in terms of their security requirements but is simply included in the final products, that is, Android-based smart phones. In addition, static analysis, which is generally used to detect vulnerabilities, may result in extra cost to detect critical security issues such as privilege escalation due to its large proportion of false positive results. In this paper, we propose and evaluate an effective technique to detect vulnerabilities in Android device drivers using both static and dynamic analyses.