Applications for Future Internet. International Summit, AFI 2016, Puebla, Mexico, May 25-28, 2016, Revised Selected Papers

Research Article

GARMDROID: IoT Potential Security Threats Analysis Through the Inference of Android Applications Hardware Features Requirements

Download
265 downloads
  • @INPROCEEDINGS{10.1007/978-3-319-49622-1_8,
        author={Abraham Rodr\^{\i}guez-Mota and Ponciano Escamilla-Ambrosio and Jassim Happa and Eleazar Aguirre-Anaya},
        title={GARMDROID: IoT Potential Security Threats Analysis Through the Inference of Android Applications Hardware Features Requirements},
        proceedings={Applications for Future Internet. International Summit, AFI 2016, Puebla, Mexico, May 25-28, 2016, Revised Selected Papers},
        proceedings_a={AFI360},
        year={2017},
        month={1},
        keywords={Internet of Things Android Security threats},
        doi={10.1007/978-3-319-49622-1_8}
    }
    
  • Abraham Rodríguez-Mota
    Ponciano Escamilla-Ambrosio
    Jassim Happa
    Eleazar Aguirre-Anaya
    Year: 2017
    GARMDROID: IoT Potential Security Threats Analysis Through the Inference of Android Applications Hardware Features Requirements
    AFI360
    Springer
    DOI: 10.1007/978-3-319-49622-1_8
Abraham Rodríguez-Mota1,*, Ponciano Escamilla-Ambrosio2,*, Jassim Happa3, Eleazar Aguirre-Anaya2
  • 1: Escuela Superior de Ingeniería Mecánica y Eléctrica, Unidad Zacatenco
  • 2: Centro de Investigación en Computación
  • 3: University of Oxford
*Contact email: armesimez@gmail.com, pescamilla@cic.ipn.mx

Abstract

Applications and services based on the Internet of Things (IoT) are increasingly vulnerable to disruption from attack or information theft. Developers and researchers attempt to prevent the growth of such disruption models, mitigate and limit their impact. Meeting these challenges requires understanding the characteristics of things and the technologies that empower the IoT since traditional protection mechanisms are not enough. Moreover, as the growth in mobile device market is pushing the deployment of the IoT, tools and mechanisms to evaluate, analyze and detect security threats in these devices are strongly required. In this context, this paper presents a web tool, named GARMDROID, aimed to help IoT software developers and integrators to evaluate IoT security threats based on the visualization of Android application hardware requests. This procedure is based on the static analysis of permissions requested by Android applications.