User-defined privilege restriction mechanism for secure execution environments on Android

Recently emerging mobile devices have powerful capabilities and access personal and private data ever than before. Whenever we want to use various services, we would encounter unexpected security problems unless we carefully approve and manage app´s permissions. To make secure execution environment for users or apps, we propose strict and light-weight privilege restriction mechanism. For this purpose, we strictly distinguish app´s priority more than that of Android and validate their permissions at run-time. As all apps must be a secure or a non-secure one according to their priority at run-time, Android doesn´t need to statically analyze in its database for all installed apps to validate and permit apps´ privilege. Providing secure environment for secure one, we dynamically constrain the others privileges by deleting some of its permissions temporarily. With the help of our proposed method, users can easily identify the most privileged app among all others and they could efficiently prohibit unintended app´s behavior to attain higher privilege without theirs acknowledgement.