Home   Research Publications Members Related Software
IndexBrowse   BibliographiesMy selection
 Search: in   (word length ≥ 3)
Publication no #465   Download bibtex file Type :   Html | Bib | Both
Add to my selection
Raindroid - A System for Run-time Mitigation of Android Intent Vulnerabilities (Poster)

Bradley Schmerl, Jeffrey Gennari, Javier Cámara and David Garlan.

In Symposium and Bootcamp on the Science of Security, Pittsburgh, PA, 19-21 April 2016.

Online links: PDF   Bibtex entry   Plain Text

Modern frameworks are required to be extendable as well as secure. However, these two qualities are often at odds. In this poster we describe an approach that uses a combination of static analysis and run-time management, based on software architecture models, that can improve security while maintaining framework extendability. We implement a prototype of the approach for the Android platform. Static analysis identifi es the architecture and communication patterns among the collection of apps on an Android device and which communications might be vulnerable to attack. Run-time mechanisms monitor these potentially vulnerable communication patterns, and adapt the system to either deny them, request explicit approval from the user, or allow them.

Keywords: Human-in-the-loop, Rainbow, Science of Security.  
    Created: 2016-01-29 11:24:02     Modified: 2017-04-17 17:41:16
Feedback: ABLE Webmaster
Last modified: Mon February 12 2018 11:21:51