Android Access Control Extension

The main objective of this work is to analyze and extend security model of mobile devices running on Android OS. Provided security extension is a Linux kernel security module that allows the system administrator to restrict program's capabilities with per-program profiles. Profiles can allow ca...

Full description

Saved in:
Bibliographic Details
Published inActa Informatica Pragensia Vol. 4; no. 3; pp. 310 - 317
Main Authors Baláž, Anton, Madoš, Branislav, Ambróz, Michal
Format Journal Article
LanguageEnglish
Published Vysoká škola ekonomická v Praze 31.12.2015
Prague University of Economics and Business
Subjects
Access control
Android
ICT Information and Communications Technologies
MAC
Policy
Profile
Sandbox
Security
Policy
Access control
Security
Profile
MAC
Android
Sandbox
Online AccessGet full text

Cover

More Information
Summary:The main objective of this work is to analyze and extend security model of mobile devices running on Android OS. Provided security extension is a Linux kernel security module that allows the system administrator to restrict program's capabilities with per-program profiles. Profiles can allow capabilities like network access, raw socket access, and the permission to read, write, or execute files on matching paths. Module supplements the traditional Android capability access control model by providing mandatory access control (MAC) based on path. This extension increases security of access to system objects in a device and allows creating security sandboxes per application.
ISSN:1805-4951
1805-4951
DOI:10.18267/j.aip.77