Works (4)
Updated: July 5th, 2023 15:37
2019 article
ACMiner: Extraction and Analysis of Authorization Checks in Android's Middleware
PROCEEDINGS OF THE NINTH ACM CONFERENCE ON DATA AND APPLICATION SECURITY AND PRIVACY (CODASPY '19), pp. 25–36.
TL;DR:
This paper proposes Authorization Check Miner (ACMiner), a framework for evaluating the correctness of Android's access control enforcement through consistency analysis of authorization checks, and uses ACMiner to study the AOSP version of Android 7.1.1 to identify 28 vulnerabilities relating to missing authorization checks.
(via Semantic Scholar)
UN Sustainable Development Goal Categories
16. Peace, Justice and Strong Institutions
(OpenAlex)
Sources: Web Of Science, NC State University Libraries, ORCID
Added: July 1, 2019
2016 article
A Study of Grayware on Google Play
2016 IEEE SYMPOSIUM ON SECURITY AND PRIVACY WORKSHOPS (SPW 2016), pp. 224–233.
Event: IEEE
TL;DR:
It is hypothesized enhancing analysis with text analytics can effectively reduce human effort when triaging grayware, and it is shown how even relatively simple heuristics can quickly triage apps that take advantage of users in an undesirable way.
(via Semantic Scholar)
Sources: Web Of Science, NC State University Libraries, ORCID
Added: August 6, 2018
2016 journal article
A Study of Security Isolation Techniques
ACM COMPUTING SURVEYS, 49(3).
author keywords: Security isolation; access control; resilient architectures
TL;DR:
This article provides a hierarchical classification structure for grouping different security isolation techniques by systematically classifying different approaches and analyzing their properties.
(via Semantic Scholar)
Sources: Web Of Science, NC State University Libraries, ORCID
Added: August 6, 2018
2016 conference paper
Practical DIFC enforcement on android
Proceedings of the 25th USENIX Security Symposium, 1119–1136.
Source: NC State University Libraries
Added: August 6, 2018