5 research outputs found

    JITANA: A modern hybrid program analysis framework for android platforms

    Get PDF
    Security vetting of Android apps is often performed under tight time constraints (e.g., a few minutes). As such, vetting activities must be performed “at speed”, when an app is submitted for distribution or a device is analyzed for malware. Existing static and dynamic program analysis approaches are not feasible for use in security analysis tools because they require a much longer time to operate than security analysts can afford. There are two factors that limit the performance and efficiency of current analysis approaches. First, existing approaches analyze only one app at a time. Finding security vulnerabilities in collaborative environments such as Android, however, requires collaborating apps to be analyzed simultaneously. Thus, existing approaches are not adequate when applied in this context. Second, existing static program analysis approaches tend to operate in a “closed world” fashion; therefore, they are not easily integrated with dynamic analysis processes to efficiently produce hybrid analysis results within a given time constraint. In this work, we introduce JITANA, an efficient and scalable hybrid program analysis framework for Android. JITANA has been designed from the ground up to be used as a building block to construct efficient and scalable program analysis techniques. JITANA also operates in an open world fashion, so malicious code detected as part of dynamic analysis can be quickly analyzed and the analysis results can be seamlessly integrated with the original static analysis results. To illustrate JITANA’s capability, we used it to analyze a large collection of apps simultaneously to identify potential collaborations among apps. We have also constructed several analysis techniques on top of JITANA and we use these to perform security vetting under four realistic scenarios. The results indicate that JITANA is scalable and robust; it can effectively and efficiently analyze complex apps including Facebook, Pokémon Go, and Pandora that the state-of-the-art approach cannot handle. In addition, we constructed a visualization engine as a plugin for JITANA to provide real-time feedback on code coverage to help analysts assess their vetting efforts. Such feedback can lead analysts to hard to reach code segments that may need further analysis. Finally we illustrate the effectiveness of JITANA in detecting and analyzing dynamically loaded code. Supplementary material attached below

    ROBOTIC SURGICAL DEVICES , SYSTEMS , AND RELATED METHODS

    Get PDF
    The embodiments disclosed herein relate to various medical device components, including components that can be incorporated into robotic and / or in vivo medical devices. Certain embodiments include various modular medical devices for in vivo medical procedures

    JITANA: A modern hybrid program analysis framework for android platforms

    Get PDF
    Security vetting of Android apps is often performed under tight time constraints (e.g., a few minutes). As such, vetting activities must be performed “at speed”, when an app is submitted for distribution or a device is analyzed for malware. Existing static and dynamic program analysis approaches are not feasible for use in security analysis tools because they require a much longer time to operate than security analysts can afford. There are two factors that limit the performance and efficiency of current analysis approaches. First, existing approaches analyze only one app at a time. Finding security vulnerabilities in collaborative environments such as Android, however, requires collaborating apps to be analyzed simultaneously. Thus, existing approaches are not adequate when applied in this context. Second, existing static program analysis approaches tend to operate in a “closed world” fashion; therefore, they are not easily integrated with dynamic analysis processes to efficiently produce hybrid analysis results within a given time constraint. In this work, we introduce JITANA, an efficient and scalable hybrid program analysis framework for Android. JITANA has been designed from the ground up to be used as a building block to construct efficient and scalable program analysis techniques. JITANA also operates in an open world fashion, so malicious code detected as part of dynamic analysis can be quickly analyzed and the analysis results can be seamlessly integrated with the original static analysis results. To illustrate JITANA’s capability, we used it to analyze a large collection of apps simultaneously to identify potential collaborations among apps. We have also constructed several analysis techniques on top of JITANA and we use these to perform security vetting under four realistic scenarios. The results indicate that JITANA is scalable and robust; it can effectively and efficiently analyze complex apps including Facebook, Pokémon Go, and Pandora that the state-of-the-art approach cannot handle. In addition, we constructed a visualization engine as a plugin for JITANA to provide real-time feedback on code coverage to help analysts assess their vetting efforts. Such feedback can lead analysts to hard to reach code segments that may need further analysis. Finally we illustrate the effectiveness of JITANA in detecting and analyzing dynamically loaded code. Supplementary material attached below

    ROBOTICDEVICESWITHONBOARD CONTROL AND RELATED SYSTEMS AND DEVICES

    Get PDF
    The embodiments disclosed herein relate to various medical device components, including components that can be incorporated into robotic and/or in vivo medical devices. Certain embodiments include various modular medical devices for in vivo medical procedures

    A Dissolved Oxygen Threshold for Shifts in Bacterial Community Structure in a Seasonally Hypoxic Estuary.

    Get PDF
    Pelagic ecosystems can become depleted of dissolved oxygen as a result of both natural processes and anthropogenic effects. As dissolved oxygen concentration decreases, energy shifts from macrofauna to microorganisms, which persist in these hypoxic zones. Oxygen-limited regions are rapidly expanding globally; however, patterns of microbial communities associated with dissolved oxygen gradients are not yet well understood. To assess the effects of decreasing dissolved oxygen on bacteria, we examined shifts in bacterial community structure over space and time in Hood Canal, Washington, USA-a glacial fjord-like water body that experiences seasonal low dissolved oxygen levels known to be detrimental to fish and other marine organisms. We found a strong negative association between bacterial richness and dissolved oxygen. Bacterial community composition across all samples was also strongly associated with the dissolved oxygen gradient, and significant changes in bacterial community composition occurred at a dissolved oxygen concentration between 5.18 and 7.12 mg O2 L(-1). This threshold value of dissolved oxygen is higher than classic definitions of hypoxia (<2.0 mg O2 L(-1)), suggesting that changes in bacterial communities may precede the detrimental effects on ecologically and economically important macrofauna. Furthermore, bacterial taxa responsible for driving whole community changes across the oxygen gradient are commonly detected in other oxygen-stressed ecosystems, suggesting that the patterns we uncovered in Hood Canal may be relevant in other low oxygen ecosystems
    corecore