File Download
There are no files associated with this item.
Links for fulltext
(May Require Subscription)
- Publisher Website: 10.1007/978-3-319-28865-9_1
- Scopus: eid_2-s2.0-84958059211
- Find via
Supplementary
-
Citations:
- Scopus: 0
- Appears in Collections:
Conference Paper: FineDroid: Enforcing permissions with system-wide application execution context
| Title | FineDroid: Enforcing permissions with system-wide application execution context |
|---|---|
| Authors | |
| Keywords | Application context Permission enforcement Policy framework |
| Issue Date | 2015 |
| Citation | Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, 2015, v. 164, p. 3-22 How to Cite? |
| Abstract | To protect sensitive resources from unauthorized use, modern mobile systems, such as Android and iOS, design a permission-based access control model. However, current model could not enforce finegrained control over the dynamic permission use contexts, causing two severe security problems. First, any code package in an application could use the granted permissions, inducing attackers to embed malicious payloads into benign apps. Second, the permissions granted to a benign application may be utilized by an attacker through vulnerable application interactions. Although ad hoc solutions have been proposed, none could systematically solve these two issues within a unified framework. This paper presents the first such framework to provide contextsensitive permission enforcement that regulates permission use policies according to system-wide application contexts, which cover both intraapplication context and inter-application context. We build a prototype system on Android, named FineDroid, to track such context during the application execution. To flexibly regulate context-sensitive permission rules, FineDroid features a policy framework that could express generic application contexts. We demonstrate the benefits of FineDroid by instantiating several security extensions based on the policy framework, for two potential users: administrators and developers. Furthermore, FineDroid is showed to introduce a minor overhead. |
| Persistent Identifier | http://hdl.handle.net/10722/346612 |
| ISSN | 2023 SCImago Journal Rankings: 0.160 |
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Zhang, Yuan | - |
| dc.contributor.author | Yang, Min | - |
| dc.contributor.author | Gu, Guofei | - |
| dc.contributor.author | Chen, Hao | - |
| dc.date.accessioned | 2024-09-17T04:12:03Z | - |
| dc.date.available | 2024-09-17T04:12:03Z | - |
| dc.date.issued | 2015 | - |
| dc.identifier.citation | Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, 2015, v. 164, p. 3-22 | - |
| dc.identifier.issn | 1867-8211 | - |
| dc.identifier.uri | http://hdl.handle.net/10722/346612 | - |
| dc.description.abstract | To protect sensitive resources from unauthorized use, modern mobile systems, such as Android and iOS, design a permission-based access control model. However, current model could not enforce finegrained control over the dynamic permission use contexts, causing two severe security problems. First, any code package in an application could use the granted permissions, inducing attackers to embed malicious payloads into benign apps. Second, the permissions granted to a benign application may be utilized by an attacker through vulnerable application interactions. Although ad hoc solutions have been proposed, none could systematically solve these two issues within a unified framework. This paper presents the first such framework to provide contextsensitive permission enforcement that regulates permission use policies according to system-wide application contexts, which cover both intraapplication context and inter-application context. We build a prototype system on Android, named FineDroid, to track such context during the application execution. To flexibly regulate context-sensitive permission rules, FineDroid features a policy framework that could express generic application contexts. We demonstrate the benefits of FineDroid by instantiating several security extensions based on the policy framework, for two potential users: administrators and developers. Furthermore, FineDroid is showed to introduce a minor overhead. | - |
| dc.language | eng | - |
| dc.relation.ispartof | Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST | - |
| dc.subject | Application context | - |
| dc.subject | Permission enforcement | - |
| dc.subject | Policy framework | - |
| dc.title | FineDroid: Enforcing permissions with system-wide application execution context | - |
| dc.type | Conference_Paper | - |
| dc.description.nature | link_to_subscribed_fulltext | - |
| dc.identifier.doi | 10.1007/978-3-319-28865-9_1 | - |
| dc.identifier.scopus | eid_2-s2.0-84958059211 | - |
| dc.identifier.volume | 164 | - |
| dc.identifier.spage | 3 | - |
| dc.identifier.epage | 22 | - |