Casing the Vault: Security Analysis of Vault Applications

Margie Ruffin; Israel Lopez-Toldeo; Kirill Levchenko; Gang Wang

doi:10.1145/3559613.3563204

Casing the Vault: Security Analysis of Vault Applications

Margie Ruffin, Israel Lopez-Toldeo, Kirill Levchenko, Gang Wang

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Vault applications are a class of mobile apps used to store and hide users' sensitive files (e.g., photos, documents, and even another app) on the phone. In this paper, we perform an empirical analysis of popular vault apps under the scenarios of unjust search and filtration of civilians by authorities (e.g., during civil unrest). By limiting the technical capability of adversaries, we explore the feasibility of inferring the presence of vault apps and uncovering the hidden files without employing sophisticated forensics analysis. Our analysis of 20 popular vault apps shows that most of them do not adequately implement/configure their disguises, which can reveal their existence without technical analysis. In addition, adversaries with rudimentary-level knowledge of the Android system can already uncover the files stored in most of the vault apps. Our results indicate the need for more secure designs for vault apps.

Original language	English (US)
Title of host publication	WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022
Publisher	Association for Computing Machinery
Pages	175-180
Number of pages	6
ISBN (Electronic)	9781450398732
DOIs	https://doi.org/10.1145/3559613.3563204
State	Published - Nov 7 2022
Event	21st Workshop on Privacy in the Electronic Society, WPES 2022 - Los Angeles, United States Duration: Nov 7 2022 → …

Publication series

Name	WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022

Conference

Conference	21st Workshop on Privacy in the Electronic Society, WPES 2022
Country/Territory	United States
City	Los Angeles
Period	11/7/22 → …

Keywords

android
privacy
vault app

ASJC Scopus subject areas

Software

Online availability

10.1145/3559613.3563204

Library availability

Discover UIUC Full Text

Cite this

Ruffin, M., Lopez-Toldeo, I., Levchenko, K., & Wang, G. (2022). Casing the Vault: Security Analysis of Vault Applications. In WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022 (pp. 175-180). (WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022). Association for Computing Machinery. https://doi.org/10.1145/3559613.3563204

Casing the Vault: Security Analysis of Vault Applications. / Ruffin, Margie; Lopez-Toldeo, Israel; Levchenko, Kirill et al.
WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022. Association for Computing Machinery, 2022. p. 175-180 (WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Ruffin, M, Lopez-Toldeo, I, Levchenko, K & Wang, G 2022, Casing the Vault: Security Analysis of Vault Applications. in WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022. WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022, Association for Computing Machinery, pp. 175-180, 21st Workshop on Privacy in the Electronic Society, WPES 2022, Los Angeles, United States, 11/7/22. https://doi.org/10.1145/3559613.3563204

Ruffin M, Lopez-Toldeo I, Levchenko K , Wang G. Casing the Vault: Security Analysis of Vault Applications. In WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022. Association for Computing Machinery. 2022. p. 175-180. (WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022). doi: 10.1145/3559613.3563204

Ruffin, Margie ; Lopez-Toldeo, Israel ; Levchenko, Kirill et al. / Casing the Vault : Security Analysis of Vault Applications. WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022. Association for Computing Machinery, 2022. pp. 175-180 (WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022).

@inproceedings{98520b3c8d4b41deaa4c2f02e98c1349,

title = "Casing the Vault: Security Analysis of Vault Applications",

abstract = "Vault applications are a class of mobile apps used to store and hide users' sensitive files (e.g., photos, documents, and even another app) on the phone. In this paper, we perform an empirical analysis of popular vault apps under the scenarios of unjust search and filtration of civilians by authorities (e.g., during civil unrest). By limiting the technical capability of adversaries, we explore the feasibility of inferring the presence of vault apps and uncovering the hidden files without employing sophisticated forensics analysis. Our analysis of 20 popular vault apps shows that most of them do not adequately implement/configure their disguises, which can reveal their existence without technical analysis. In addition, adversaries with rudimentary-level knowledge of the Android system can already uncover the files stored in most of the vault apps. Our results indicate the need for more secure designs for vault apps.",

keywords = "android, privacy, vault app",

author = "Margie Ruffin and Israel Lopez-Toldeo and Kirill Levchenko and Gang Wang",

note = "ACKNOWLEDGMENTS. This work was supported in part by NSF grants 2030521, and the Graduate Research Fellowship Program under Grant No 21-46756.; 21st Workshop on Privacy in the Electronic Society, WPES 2022 ; Conference date: 07-11-2022",

year = "2022",

month = nov,

day = "7",

doi = "10.1145/3559613.3563204",

language = "English (US)",

series = "WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022",

publisher = "Association for Computing Machinery",

pages = "175--180",

booktitle = "WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022",

address = "United States",

}

TY - GEN

T1 - Casing the Vault

T2 - 21st Workshop on Privacy in the Electronic Society, WPES 2022

AU - Ruffin, Margie

AU - Lopez-Toldeo, Israel

AU - Levchenko, Kirill

AU - Wang, Gang

N1 - ACKNOWLEDGMENTS. This work was supported in part by NSF grants 2030521, and the Graduate Research Fellowship Program under Grant No 21-46756.

PY - 2022/11/7

Y1 - 2022/11/7

N2 - Vault applications are a class of mobile apps used to store and hide users' sensitive files (e.g., photos, documents, and even another app) on the phone. In this paper, we perform an empirical analysis of popular vault apps under the scenarios of unjust search and filtration of civilians by authorities (e.g., during civil unrest). By limiting the technical capability of adversaries, we explore the feasibility of inferring the presence of vault apps and uncovering the hidden files without employing sophisticated forensics analysis. Our analysis of 20 popular vault apps shows that most of them do not adequately implement/configure their disguises, which can reveal their existence without technical analysis. In addition, adversaries with rudimentary-level knowledge of the Android system can already uncover the files stored in most of the vault apps. Our results indicate the need for more secure designs for vault apps.

AB - Vault applications are a class of mobile apps used to store and hide users' sensitive files (e.g., photos, documents, and even another app) on the phone. In this paper, we perform an empirical analysis of popular vault apps under the scenarios of unjust search and filtration of civilians by authorities (e.g., during civil unrest). By limiting the technical capability of adversaries, we explore the feasibility of inferring the presence of vault apps and uncovering the hidden files without employing sophisticated forensics analysis. Our analysis of 20 popular vault apps shows that most of them do not adequately implement/configure their disguises, which can reveal their existence without technical analysis. In addition, adversaries with rudimentary-level knowledge of the Android system can already uncover the files stored in most of the vault apps. Our results indicate the need for more secure designs for vault apps.

KW - android

KW - privacy

KW - vault app

UR - http://www.scopus.com/inward/record.url?scp=85143257170&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85143257170&partnerID=8YFLogxK

U2 - 10.1145/3559613.3563204

DO - 10.1145/3559613.3563204

M3 - Conference contribution

AN - SCOPUS:85143257170

T3 - WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022

SP - 175

EP - 180

BT - WPES 2022 - Proceedings of the 21st Workshop on Privacy in the Electronic Society, co-located with CCS 2022

PB - Association for Computing Machinery

Y2 - 7 November 2022

ER -

Casing the Vault: Security Analysis of Vault Applications

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this