MOSES: supporting operation modes on smartphones

Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies Pub Date : 2012-06-20 DOI:10.1145/2295136.2295140

G. Russello, M. Conti, B. Crispo, Earlence Fernandes

{"title":"MOSES: supporting operation modes on smartphones","authors":"G. Russello, M. Conti, B. Crispo, Earlence Fernandes","doi":"10.1145/2295136.2295140","DOIUrl":null,"url":null,"abstract":"Smartphones are very effective tools for increasing the productivity of business users. With their increasing computational power and storage capacity, smartphones allow end users to perform several tasks and be always updated while on the move. As a consequence, end users require that their personal smartphones are connected to their work IT infrastructure. Companies are willing to support employee-owned smartphones because of the increase in productivity of their employees. However, smartphone security mechanisms have been discovered to offer very limited protection against malicious applications that can leak data stored on them. This poses a serious threat to sensitive corporate data. In this paper we present MOSES, a policy-based framework for enforcing software isolation of applications and data on the Android platform. In MOSES, it is possible to define distinct security profiles within a single smartphone. Each security profile is associated with a set of policies that control the access to applications and data. One of the main characteristics of MOSES is the dynamic switching from one security profile to another.","PeriodicalId":74509,"journal":{"name":"Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies","volume":"25 1","pages":"3-12"},"PeriodicalIF":0.0000,"publicationDate":"2012-06-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"89","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2295136.2295140","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 89

Abstract

Smartphones are very effective tools for increasing the productivity of business users. With their increasing computational power and storage capacity, smartphones allow end users to perform several tasks and be always updated while on the move. As a consequence, end users require that their personal smartphones are connected to their work IT infrastructure. Companies are willing to support employee-owned smartphones because of the increase in productivity of their employees. However, smartphone security mechanisms have been discovered to offer very limited protection against malicious applications that can leak data stored on them. This poses a serious threat to sensitive corporate data. In this paper we present MOSES, a policy-based framework for enforcing software isolation of applications and data on the Android platform. In MOSES, it is possible to define distinct security profiles within a single smartphone. Each security profile is associated with a set of policies that control the access to applications and data. One of the main characteristics of MOSES is the dynamic switching from one security profile to another.

查看原文本刊更多论文

MOSES:支持智能手机的操作模式

智能手机是提高企业用户工作效率的有效工具。随着智能手机的计算能力和存储容量的不断提高，终端用户可以在移动中执行多项任务并随时更新。因此，终端用户要求他们的个人智能手机连接到他们的工作IT基础设施。公司愿意支持员工拥有的智能手机，因为员工的生产力提高了。然而，人们发现智能手机的安全机制对恶意应用程序提供的保护非常有限，恶意应用程序可能会泄露存储在智能手机上的数据。这对敏感的企业数据构成了严重威胁。在本文中，我们提出了MOSES，一个基于策略的框架，用于在Android平台上强制应用程序和数据的软件隔离。在MOSES中，可以在单个智能手机中定义不同的安全配置文件。每个安全配置文件都与一组策略相关联，这些策略控制对应用程序和数据的访问。MOSES的主要特征之一是从一个安全配置文件到另一个安全配置文件的动态切换。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies

自引率

0.00%

发文量