Towards a Formal Approach for Detection of Vulnerabilities in the Android Permissions System

Message:
Article Type:
Research/Original Article (دارای رتبه معتبر)
Abstract:
Android is a widely used operating system that employs a permission-based access control model. The Android Permissions System (APS) is responsible for mediating application resource requests. APS is a critical component of the Android security mechanism; hence, a failure in the design of APS can potentially lead to vulnerabilities that grant unauthorized access to resources by malicious applications. In this paper, we present a formal approach for modeling and verifying the security properties of APS. We demonstrate the usability of the proposed approach by showcasing the detection of a well-knownvulnerability found in Android’s custom permissions.
Language:
English
Published:
International Journal of Information Security, Volume:14 Issue: 3, Oct 2022
Pages:
61 to 69
https://www.magiran.com/p2520389  
سامانه نویسندگان
  • Tork Ladani، Behrouz
    Corresponding Author (2)
    Tork Ladani, Behrouz
    Full Professor Faculty of Computer Engineering, University Of Isfahan, اصفهان, Iran
اطلاعات نویسنده(گان) توسط ایشان ثبت و تکمیل شده‌است. برای مشاهده مشخصات و فهرست همه مطالب، صفحه رزومه را ببینید.
مقالات دیگری از این نویسنده (گان)