A Study on Android Privilege Escalation Attack by Binder Drive Metadata Management

As mobile usage increases, it is a big problem that it is very vulnerable to privilege escalation attack that threatens the protection of users' information. In this study, the metadata of the service server and the context manager metadata are managed in the binder addressing process and accordingly it is possible to extract and retrieve the metadata overall two times before requesting the service providing to the context manager and before providing the requested service to the service server. Through such procedure, the usefulness of the protocol requesting the service is checked again, the suitability for the requested service is reviewed, and the information is transmitted to the system. Thereby, risks are communicated to users and privilege escalation attacks are prevented.