Toward widely deployable monitoring system for android = 안드로이드 OS에 쉽게 적용가능한 모니터링 시스템

Cited 0 time in webofscience Cited 0 time in scopus
  • Hit : 262
  • Download : 0
The number of malicious applications that attempt to exfiltrate users` privacy information has increased with the rapid growth in the usage of mobile applications. To protect privacy information from untrusted apps, runtime monitoring approaches have been suggested for monitoring apps` behavior and enforcing policies corresponding to the behavior. In general, according to the location of the monitoring code and intercepting code, these approaches can be classified into two categories: framework-hardening and app-repackaging. However, both types of approaches suffer from fundamental problems that impede their wide deployment. On the one hand, framework-hardening approaches require OS modification, which suffers from the fragmentation and usability problems, and on the other hand, app-repackaging approaches require app modification, which suffers from problems related to dynamically loaded code and breaching of the signature. In this thesis, we present a widely deployable policy enforcement system called SeEnclosure, which can selectively adopt an untrusted app at runtime to prevent leakage of privacy data without any modification of the Android OS and apps being required. By exploiting an Android property, SeEnclosure can interpose the code of apps and enforce policies. We show that SeEnclosure is portable for various versions of the Android OS installed on two devices and does not impose repackaging problems, whereas existing approaches do not provide both of these advantages. We evaluated the portability of SeEnclosure on Nexus 7 2012 with Android OS versions from 4.1.2 to 4.4.2 and Galaxy Note 3 with Android OS 4.4.2, with a 3.5% runtime performance overhead, and the compatibility using the top 16 apps in the Android market. Through experiments using our synthetic apps, we also confirm that SeEnclosure does not cause any repackaging problems.
Advisors
Kang, Brentresearcher강병훈researcher
Description
한국과학기술원 :정보보호대학원,
Publisher
한국과학기술원
Issue Date
2014
Identifier
325007
Language
eng
Description

학위논문(석사) - 한국과학기술원 : 정보보호대학원, 2014.8 ,[v, 28 p. :]

Keywords

Android; Monitoring; 안드로이드; 모니터링

URI
http://hdl.handle.net/10203/221937
Link
http://library.kaist.ac.kr/search/detail/view.do?bibCtrlNo=657509&flag=dissertation
Appears in Collection
IS-Theses_Master(석사논문)
Files in This Item
There are no files associated with this item.

qr_code

  • mendeley

    citeulike


rss_1.0 rss_2.0 atom_1.0