DroidKex: Fast extraction of ephemeral TLS keys from the memory of Android apps. (July 2018)
- Record Type:
- Journal Article
- Title:
- DroidKex: Fast extraction of ephemeral TLS keys from the memory of Android apps. (July 2018)
- Main Title:
- DroidKex: Fast extraction of ephemeral TLS keys from the memory of Android apps
- Authors:
- Taubmann, Benjamin
Alabduljaleel, Omar
Reiser, Hans P. - Abstract:
- Abstract: Fast extraction of ephemeral data from the memory of a running process without affecting the performance of the analyzed program is a problem when the location and data structure layout of the information is not known. In this paper, we introduce DroidKex, an approach for partially reconstructing the semantics of data structures in order to minimize the overhead required for extracting information from the memory of applications. We demonstrate the practicability of our approach by applying it to 86Android applications in order to extract the cryptographic key material of TLS connections.
- Is Part Of:
- Digital investigation. Volume 26(2018)Supplement
- Journal:
- Digital investigation
- Issue:
- Volume 26(2018)Supplement
- Issue Display:
- Volume 26, Issue 2018 (2018)
- Year:
- 2018
- Volume:
- 26
- Issue:
- 2018
- Issue Sort Value:
- 2018-0026-2018-0000
- Page Start:
- S67
- Page End:
- S76
- Publication Date:
- 2018-07
- Subjects:
- Memory forensics -- Semantic gap -- TLS -- Android
Forensic sciences -- Data processing -- Periodicals
Criminal investigation -- Data processing -- Periodicals
363.250285 - Journal URLs:
- http://www.sciencedirect.com/science/journal/17422876 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.diin.2018.04.013 ↗
- Languages:
- English
- ISSNs:
- 1742-2876
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3588.396620
British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 18016.xml