PasDroid: Android的实时安全增强

2014 Eighth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing Pub Date : 2014-07-02 DOI:10.1109/IMIS.2014.28

S. W. Hsiao, Shih-Hao Hung, Roger Chien, C. Yeh

{"title":"PasDroid: Android的实时安全增强","authors":"S. W. Hsiao, Shih-Hao Hung, Roger Chien, C. Yeh","doi":"10.1109/IMIS.2014.28","DOIUrl":null,"url":null,"abstract":"As the number of Android devices increased dramatically in recent years, the number of malware targeted for Android also has spiked up. Among the security risks brought by or the consequences caused by Android malware, the leakage of sensitive information becomes the majority. Current Android system only offers users a permission granting mechanism in the application installation time. Although some vendors place further mechanisms to let users grant or revoke the permissions at any time, the users still cannot distinguish if any data have been normally transmitted or intentionally leaked by the applications. Based on Taint Droid, we created a real-time security scheme on Android, called PasDroid, to trace dubious data flow and to alert the users with information for judging if a transmission should be allowed or not.","PeriodicalId":345694,"journal":{"name":"2014 Eighth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing","volume":"60 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-07-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"PasDroid: Real-Time Security Enhancement for Android\",\"authors\":\"S. W. Hsiao, Shih-Hao Hung, Roger Chien, C. Yeh\",\"doi\":\"10.1109/IMIS.2014.28\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"As the number of Android devices increased dramatically in recent years, the number of malware targeted for Android also has spiked up. Among the security risks brought by or the consequences caused by Android malware, the leakage of sensitive information becomes the majority. Current Android system only offers users a permission granting mechanism in the application installation time. Although some vendors place further mechanisms to let users grant or revoke the permissions at any time, the users still cannot distinguish if any data have been normally transmitted or intentionally leaked by the applications. Based on Taint Droid, we created a real-time security scheme on Android, called PasDroid, to trace dubious data flow and to alert the users with information for judging if a transmission should be allowed or not.\",\"PeriodicalId\":345694,\"journal\":{\"name\":\"2014 Eighth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing\",\"volume\":\"60 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-07-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2014 Eighth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/IMIS.2014.28\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 Eighth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IMIS.2014.28","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

摘要

近年来，随着Android设备数量的急剧增加，针对Android的恶意软件数量也急剧增加。在Android恶意软件带来的安全风险或造成的后果中，敏感信息的泄露占多数。目前的Android系统只在应用程序安装时为用户提供权限授予机制。尽管一些供应商提供了进一步的机制来允许用户随时授予或撤销权限，但用户仍然无法区分任何数据是正常传输的还是被应用程序故意泄露的。基于Taint Droid，我们在Android上创建了一个名为PasDroid的实时安全方案，用于跟踪可疑数据流，并向用户发出信息，以判断是否应该允许传输。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

PasDroid: Real-Time Security Enhancement for Android

As the number of Android devices increased dramatically in recent years, the number of malware targeted for Android also has spiked up. Among the security risks brought by or the consequences caused by Android malware, the leakage of sensitive information becomes the majority. Current Android system only offers users a permission granting mechanism in the application installation time. Although some vendors place further mechanisms to let users grant or revoke the permissions at any time, the users still cannot distinguish if any data have been normally transmitted or intentionally leaked by the applications. Based on Taint Droid, we created a real-time security scheme on Android, called PasDroid, to trace dubious data flow and to alert the users with information for judging if a transmission should be allowed or not.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2014 Eighth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing

自引率

0.00%

发文量