• DocumentCode
    2777158
  • Title

    YAASE: Yet Another Android Security Extension

  • Author

    Russello, Giovanni ; Crispo, Bruno ; Fernandes, Earlence ; Zhauniarovich, Yuri

  • Author_Institution
    Create-net, Trento, Italy
  • fYear
    2011
  • fDate
    9-11 Oct. 2011
  • Firstpage
    1033
  • Lastpage
    1040
  • Abstract
    Three hundred and fifty thousand Android phones are activated each day. The open philosophy adopted by Google makes it easy for third-parties to develop and distribute applications. Unfortunately, the same applies to malicious applications that pose a real threat to users´ privacy. The limited security model implemented on the Android Platform has failed in thwarting these attacks. In this paper, we present Yet Another Android Security Extension (YAASE) that provides a fine-grained security mechanism while protecting the user from malicious applications that attempt to leak sensitive information via network access or by privilege spreading through collusion. We have implemented YAASE and evaluated its performance overhead. Preliminary results show the approach is indeed feasible.
  • Keywords
    authorisation; operating systems (computers); Android phones; Google; YAASE; collusion; fine-grained security; malicious applications; network access; yet another Android security extension; Androids; Humanoid robots; Internet; Permission; Privacy; Smart phones; Android Secuirty Extension; Information Flow; Policy-based Access Cotrol;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Privacy, Security, Risk and Trust (PASSAT) and 2011 IEEE Third Inernational Conference on Social Computing (SocialCom), 2011 IEEE Third International Conference on
  • Conference_Location
    Boston, MA
  • Print_ISBN
    978-1-4577-1931-8
  • Type

    conf

  • DOI
    10.1109/PASSAT/SocialCom.2011.151
  • Filename
    6113256
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2777158