| 带有空间上下文信息的细粒度Android安全强化机制的设计 |
| 其他题名 | DESIGNING FINE GRAINED STRENGTHENING MECHANISM FOR ANDROID WITH SPATIAL CONTEXT INFORMATION
|
| 任桂超; 丁丽萍; 贺也平
|
| 2014
|
| 发表期刊 | 计算机应用与软件
 |
| ISSN | 1000-386X
|
| 卷号 | 31期号:5页码:285-290,315 |
| 摘要 | Android操作系统广泛应用于手机等移动设备,但并未根据移动设备的空间移动特性加入有针对性的访问控制,从而带来安全隐患。通过对现有Android权限模型的形式化分析,证明其无法针对空间位置信息进行有效的访问控制。给出一种将空间访问控制集成至Android权限模型的实现方法,并给出其有效性的形式化证明。经过实验分析发现该方法能够有效地根据空间位置信息对系统中的敏感操作做出保护,同时并不影响系统的可用性。 Android operating system is widely used in mobile phones and other mobile devices,but the targeted access control according to spatial mobile characteristic of mobile devices has not been taken into consideration,which brings potential security pitfall.In this paper, with formal analysis on existing Android permission model,we prove that it cannot give effective access control aiming at the spatial location information.We provide an implementation approach for integrating the spatial-aware access control into Android permission model,and give a formal proof of its effectiveness.We find through experimental analyses that the proposed method can effectively protect the sensitive operations in system according to the spatial location information,while not affect the usability of the system. |
| 收录类别 | CSCD
|
| 其他摘要 | Android operating system is widely used in mobile phones and other mobile devices,but the targeted access control according to spatial mobile characteristic of mobile devices has not been taken into consideration,which brings potential security pitfall. In this paper, with formal analysis on existing Android permission model,we prove that it cannot give effective access control aiming at the spatial location information. We provide an implementation approach for integrating the spatial-aware access control into Android permission model,and give a formal proof of its effectiveness. We find through experimental analyses that the proposed method can effectively protect the sensitive operations in system according to the spatial location information,while not affect the usability of the system. |
| 关键词 | Android安全
权限模型
空间访问控制
Android Security
Permission Model
Spatial-aware Access Control
|
| 部门归属 | 中国科学院软件研究所基础软件国家工程研究中心 北京 100190; 中国科学院大学 北京 100190 中国科学院软件研究所基础软件国家工程研究中心 北京 100190
|
| 语种 | 中文
|
| CSCD记录号 | CSCD:5144819
|
| 内容类型 | 期刊论文
|
| URI标识 | http://ir.iscas.ac.cn/handle/311060/16746
|
| 专题 | 中国科学院软件研究所
|
推荐引用方式
GB/T 7714 |
任桂超,丁丽萍,贺也平. 带有空间上下文信息的细粒度Android安全强化机制的设计[J]. 计算机应用与软件,2014,31(5):285-290,315.
|
| APA |
任桂超,丁丽萍,&贺也平.(2014).带有空间上下文信息的细粒度Android安全强化机制的设计.计算机应用与软件,31(5),285-290,315.
|
| MLA |
任桂超,et al."带有空间上下文信息的细粒度Android安全强化机制的设计".计算机应用与软件 31.5(2014):285-290,315.
|
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论