Research Article
POSTER: API-Level Multi-policy Access Control Enforcement for Android Middleware
@INPROCEEDINGS{10.1007/978-3-319-28865-9_30, author={Dongdong Tian and Xiaohong Li and Jing Hu and Guangquan Xu and Zhiyong Feng}, title={POSTER: API-Level Multi-policy Access Control Enforcement for Android Middleware}, proceedings={Security and Privacy in Communication Networks. 11th International Conference, SecureComm 2015, Dallas, TX, USA, October 26-29, 2015, Revised Selected Papers}, proceedings_a={SECURECOMM}, year={2016}, month={2}, keywords={Android middleware Multi-policy Permission re-delegation Inter-component communication Privilege escalation attacks}, doi={10.1007/978-3-319-28865-9_30} }- Dongdong Tian
Xiaohong Li
Jing Hu
Guangquan Xu
Zhiyong Feng
Year: 2016
POSTER: API-Level Multi-policy Access Control Enforcement for Android Middleware
SECURECOMM
Springer
DOI: 10.1007/978-3-319-28865-9_30
Abstract
This paper proposes , an API-level multi-policy access control enforcement based on the ‘Rule Set Based Access Control’ (RSBAC) framework. In the , we monitor and manage resources, services and Android inter-component communication (ICC) based on multiple policies mechanism, so as to restrict the applications access to the sensitive APIs and prevent privilege escalation attacks. When installing an application, we build the mapping relationships between sensitive APIs and the application capability. Each rule in the user-defined and context policies is regarded as a limitation of the application capability. Moreover, system policy is used for matching the illegal ICC communications. Experimental results showed that we can realize the API-level access control for Android middleware, and prevent the illegal ICC communication on the Android 4.1.4.
