Raindroid - A System for Run-time Mitigation of Android Intent Vulnerabilities

被引：4

作者：

Schmerl, Bradley ^{[1
]}

Gennari, Jeffrey ^{[1
]}

Camara, Javier ^{[1
]}

Garlan, David ^{[1
]}

机构：

[1] Carnegie Mellon Univ, Inst Software Res, Pittsburgh, PA 15213 USA

来源：

SYMPOSIUM AND BOOTCAMP ON THE SCIENCE OF SECURITY | 2016年

关键词：

software architecture; security; self-adaptation;

D O I：

10.1145/2898375.2898389

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

Modern frameworks are required to be extendable as well as secure. However, these two qualities are often at odds. In this poster we describe an approach that uses a combination of static analysis and run-time management, based on software architecture models, that can improve security while maintaining framework extendability. We implement a prototype of the approach for the Android platform. Static analysis identifies the architecture and communication patterns among the collection of apps on an Android device and which communications might be vulnerable to attack. Run-time mechanisms monitor these potentially vulnerable communication patterns, and adapt the system to either deny them, request explicit approval from the user, or allow then.

引用

页码：115 / 117

页数：3

共 50 条

[1] A survey on run-time packers and mitigation techniques
Alkhateeb, Ehab
Ghorbani, Ali
Lashkari, Arash Habibi
[J]. INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 2024, 23 (02) : 887 - 913
[2] A survey on run-time packers and mitigation techniques
Ehab Alkhateeb
Ali Ghorbani
Arash Habibi Lashkari
[J]. International Journal of Information Security, 2024, 23 : 887 - 913
[3] A run-time system for WCL
Rowstron, A
Wray, S
[J]. INTERNET PROGRAMMING LANGUAGES, PROCEEDINGS, 1999, 1686 : 78 - 96
[4] A Run-Time Adaptive Multiprocessor System
Rutzig, Mateus Beck
Beck, Antonio Carlos S.
Carro, Luigi
[J]. 2013 IEEE INTERNATIONAL SYMPOSIUM ON CIRCUITS AND SYSTEMS (ISCAS), 2013, : 1664 - 1667
[5] A dynamic reconfiguration run-time system
Burns, J
Donlin, A
Hogg, J
Singh, S
deWit, M
[J]. 5TH ANNUAL IEEE SYMPOSIUM ON FIELD-PROGRAMMABLE CUSTOM COMPUTING MACHINES, 1997, : 66 - 75
[6] Run-time Detection and Mitigation of Power-Noise Viruses
Tenentes, Vasileios
Das, Shidhartha
Rossi, Daniele
Al-Hashimi, Bashir M.
[J]. 2019 IEEE 25TH INTERNATIONAL SYMPOSIUM ON ON-LINE TESTING AND ROBUST SYSTEM DESIGN (IOLTS 2019), 2019, : 275 - 280
[7] An Investigation into Android Run-time Permissions from the End Users' Perspective
Scoccia, Gian Luca
Ruberto, Stefano
Malavolta, Ivano
Autili, Marco
Inverardi, Paola
[J]. 2018 IEEE/ACM 5TH INTERNATIONAL CONFERENCE ON MOBILE SOFTWARE ENGINEERING AND SYSTEMS (MOBILESOFT), 2018, : 45 - 55
[8] A run-time system for dynamic grain packing
Sobral, JL
Proença, AJ
[J]. EURO-PAR'99: PARALLEL PROCESSING, 1999, 1685 : 845 - 852
[9] Context switching in a run-time reconfigurable system
Puttegowda, K
Lehn, DI
Park, JH
Athanas, P
Jones, M
[J]. JOURNAL OF SUPERCOMPUTING, 2003, 26 (03): : 239 - 257
[10] An evaluation of an FPGA run-time support system
Green, P
Vakondios, M
Edwards, M
[J]. EUROMICRO SYMPOSIUM ON DIGITAL SYSTEM DESIGN, PROCEEDINGS: ARCHITECTURES, METHODS AND TOOLS, 2002, : 299 - 306

← 1 2 3 4 5 →