Research Article
POSTER: Semantics-Aware Rule Recommendation and Enforcement for Event Paths
@INPROCEEDINGS{10.1007/978-3-319-28865-9_33, author={Yongbo Li and Fan Yao and Tian Lan and Guru Venkataramani}, title={POSTER: Semantics-Aware Rule Recommendation and Enforcement for Event Paths}, proceedings={Security and Privacy in Communication Networks. 11th International Conference, SecureComm 2015, Dallas, TX, USA, October 26-29, 2015, Revised Selected Papers}, proceedings_a={SECURECOMM}, year={2016}, month={2}, keywords={}, doi={10.1007/978-3-319-28865-9_33} }- Yongbo Li
Fan Yao
Tian Lan
Guru Venkataramani
Year: 2016
POSTER: Semantics-Aware Rule Recommendation and Enforcement for Event Paths
SECURECOMM
Springer
DOI: 10.1007/978-3-319-28865-9_33
Abstract
With users’ increasing awareness of security and privacy issues, Android’s permission mechanism and other existing methods fall short to provide effective protection over user data. This paper presents SARRE, a Semantics-Aware Rule Recommendation and Enforcement system to detect critical information outflows and prevent information leakage. SARRE leverages runtime monitoring and statistical analysis to identify system event paths. Then, an online recommendation algorithm is developed to automatically assign and enforce a semantics-aware security rule to each event path. Our preliminary results on real-world malware samples and popular apps from Google Play show that the recommended rules by our system are effective in preventing information leakage and enabling protection policies for users’ private data.