Title :
A Configurable and Extensible Security Service Architecture for Smartphones
Author :
Titze, Dennis ; Stephanow, P. ; Schutte, Julian
Abstract :
In current Bring-Your-Own-Device (BYOD) settings, companies struggle to assess and control the security level of their employee´s smartphones. Application distribution points like the Apple Application Store and Google Play provide application reviews and malware checks, but these measures are opaque and not aligned with corporate-specific security guidelines. In this paper, we present a framework which allows companies to run automated security checks, tailored to their specific security requirements and independent of app markets. Our framework orchestrates different plug-in security services for checking mobile devices for malware, misbehaving application, and configurations. The framework operates on a virtual replica which is created from the physical device, thereby allowing deeper inspection than current industry´s state-of-the-art solutions. We implemented the framework as a prototype and evaluated its performance and feasibility.
Keywords :
inspection; invasive software; mobile computing; personnel; smart phones; application review; automated security check; bring-your-own-device; configurable security service architecture; corporate specific security guideline; employee smartphone; extensible security service architecture; inspection; malware check; mobile device checking; physical device; plug-in security service; security requirement; virtual replica; Companies; Google; Kernel; Malware; Mobile communication; Smart phones; application security; mobile apps; mobile security; smartphone security;
Conference_Titel :
Advanced Information Networking and Applications Workshops (WAINA), 2013 27th International Conference on
Conference_Location :
Barcelona
Print_ISBN :
978-1-4673-6239-9
Electronic_ISBN :
978-0-7695-4952-1
DOI :
10.1109/WAINA.2013.83
