Chinese | English
ISCAS OpenIR
Direct Resource Hijacking in Android
Gu, YC; Li, Q; Zhang, HT; Su, PR; Zhang, XW; Feng, DG
2016
SourceIEEE INTERNET COMPUTING
ISSN1089-7801
Volume20Issue:5Pages:46-56
English AbstractIn this article, the authors discuss a new attack called a direct resource hijacking attack (or resource hijacking attack), which directly hijacks exported components or permissions on components owned by benign applications. To tackle this vulnerability, they propose a fine-grained resource access control framework in Android and introduce a certificate-augmented resource naming mechanism. With this method, malicious apps can't hijack a victim app's permissions to steal its private data in the victim app, or hijack a victim app's components to retrieve data that's delivered to the victim app.; In this article, the authors discuss a new attack called a direct resource hijacking attack (or resource hijacking attack), which directly hijacks exported components or permissions on components owned by benign applications. To tackle this vulnerability, they propose a fine-grained resource access control framework in Android and introduce a certificate-augmented resource naming mechanism. With this method, malicious apps can't hijack a victim app's permissions to steal its private data in the victim app, or hijack a victim app's components to retrieve data that's delivered to the victim app.
Indexed TypeSCI
DepartmentChinese Acad Sci, Inst Software, Beijing 100864, Peoples R China. Tsinghua Univ, Grad Sch Shenzhen, Shenzhen, Peoples R China. Indiana Univ, Sch Informat & Comp, Bloomington, IN 47405 USA. Samsung Res Amer, Mountain View, CA USA.
Language英语
WOS IDWOS:000387067100007
Citation statistics
Cited Times:2[WOS]   [WOS Record]     [Related Records in WOS]
Content Type期刊论文
URIhttp://ir.iscas.ac.cn/handle/311060/17307
Collection中国科学院软件研究所
Recommended Citation
GB/T 7714		 Gu, YC,Li, Q,Zhang, HT,et al. Direct Resource Hijacking in Android[J]. IEEE INTERNET COMPUTING,2016,20(5):46-56.
APA Gu, YC,Li, Q,Zhang, HT,Su, PR,Zhang, XW,&Feng, DG.(2016).Direct Resource Hijacking in Android.IEEE INTERNET COMPUTING,20(5),46-56.
MLA Gu, YC,et al."Direct Resource Hijacking in Android".IEEE INTERNET COMPUTING 20.5(2016):46-56.
Files in This Item:
There are no files associated with this item.
Related Services
Recommend this item
Bookmark
Usage statistics
Export to Endnote
Google Scholar
Similar articles in Google Scholar
[Gu, YC]'s Articles
[Li, Q]'s Articles
[Zhang, HT]'s Articles
Baidu academic
Similar articles in Baidu academic
[Gu, YC]'s Articles
[Li, Q]'s Articles
[Zhang, HT]'s Articles
Bing Scholar
Similar articles in Bing Scholar
[Gu, YC]'s Articles
[Li, Q]'s Articles
[Zhang, HT]'s Articles
Terms of Use
No data!
Social Bookmark/Share
All comments (0)
No comment.
 

Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.