The Multi-level Security for the Android OS

被引：0

作者：

Oh, Ji-Soo ^{[2
]}

Park, Min-Woo ^{[2
]}

Chung, Tai-Myoung ^{[1
]}

机构：

[1] Sungkyunkwan Univ, Coll Informat & Commun Engn, Suwon, South Korea

[2] Sungkyunkwan Univ, Dept Elect & Comp Engn, Suwon, South Korea

来源：

COMPUTATIONAL SCIENCE AND ITS APPLICATIONS - ICCSA 2014, PT IV | 2014年 / 8582卷

关键词：

Android; Mobile Phone Security; Android Permission Mechanism;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Recently, the Android smartphone has become a frequent target of attackers. The smartphone provides personalized services such as finance and healthcare application, so attackers may invade the user's privacy by compromising the smartphone. The Android platform has permission based security model, but there are several vulnerabilities. First, when components communicate through message passing mechanism, attackers can eavesdrop or intercept the message. It may lead to leakage of user's sensitive information. Second, a non-privileged caller can access more privileged callee by exploiting vulnerable interfaces. In this paper, we propose multi-level security framework to protect against the attacks described above. Our security framework assigns security level to all applications, and it regulates communication between components at runtime.

引用

页码：743 / +

页数：3

共 50 条

[1] Enhancing Security of the Android Platform via Multi-level Security Model
Oh, Ji-Soo
Park, Min-Woo
Chung, Tai-Myoung
[J]. APPLICATIONS AND TECHNIQUES IN INFORMATION SECURITY, ATIS 2014, 2014, 490 : 13 - 24
[2] Android OS Information Security Level Assessment
Chernenko, Pavlo
Orlova, Maria
[J]. INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY, 2020, 20 (08): : 242 - 248
[3] Multi-level isolation for Android applications
Averlant, Guillaume
[J]. 2017 IEEE 28TH INTERNATIONAL SYMPOSIUM ON SOFTWARE RELIABILITY ENGINEERING WORKSHOPS (ISSREW 2017), 2017, : 128 - 131
[4] Multi-OS isolation security mechanism for Android platforms
Zhang, Zhijiao
Chen, Yu
[J]. Qinghua Daxue Xuebao/Journal of Tsinghua University, 2014, 54 (12): : 1517 - 1521
[5] Survey of Android OS security
National Computer Network Intrusion Protection Center, University of Chinese Academy of Sciences, Beijing
101408, China
[J]. Jisuanji Yanjiu yu Fazhan, 7 (1385-1396):
[6] Multi-level security requirements for hypervisors
Karger, PA
[J]. 21ST ANNUAL COMPUTER SECURITY APPLICATIONS CONFERENCE, PROCEEDINGS, 2005, : 240 - 248
[7] Extending linux for multi-level security
Wilson, George
Weidner, Klaus
Salem, Loulwa
[J]. PROCEEDINGS OF THE THIRD ANNUAL SECURITY ENHANCED LINUX SYMPOSIUM, 2007, : 101 - 109
[8] Multi-Level network security architecture
Luo, J.Z.
Liu, Y.Y.
[J]. 2001, Chinese Academy of Sciences (12):
[9] Android multi-level system permission management approach
20160501878094
[J]. Luo, Yang (luoyang@pku.edu.cn), 2015, Chinese Academy of Sciences (26):
[10] Energy security in a multi-level governance perspective
Hermanson, Ann-Sofie
[J]. MARINE POLICY, 2018, 98 : 301 - 308

← 1 2 3 4 5 →