Publication:

Android's Performance Anxiety: An In-Depth Analysis of the Stagefright Bugs

Thumbnail Image

Open/View Files

AKCAY-SENIORTHESIS-2016.pdf (266.69 KB)

Date

2016-06-21

Authors

Published Version

Published Version

Journal Title

Journal ISSN

Volume Title

Publisher

The Harvard community has made this article openly available. Please share how this access benefits you.

Research Projects

Organizational Units

Journal Issue

Citation

Abstract

Stagefright is the collective group of bugs in the Android operating system from versions 2.2 to 5.1.1. Discovered in mid 2015, these vulnerabilities still exist in approximately 1 billion devices that have yet to receive the appropriate patches and updates. Given its large presence in the mobile market and its impact on Android mobile security, this thesis aims to present an in-depth study of each of the vulnerabilities. We begin with an analysis of the vulnerable code across versions 4.4.4, 5.1.1 and 6.0.0, and provide explanations as to what causes the weaknesses in the code. The existence of the bugs, as well as proof of concepts of their exploits are presented, and an analysis of the results is provided. We also briefly discuss the implications of our results on new related vulnerabilities that exist in Android version 6.0.

Description

Other Available Sources

Research Data

Keywords

Computer Science

Terms of Use

This article is made available under the terms and conditions applicable to Other Posted Material (LAA), as set forth at Terms of Service

URI

http://nrs.harvard.edu/urn-3:HUL.InstRepos:38811442

Collections

FAS Theses and Dissertations

Endorsement

Review

Supplemented By

Related Stories