As smartphones have become an indispensable part of daily life, mobile users are increasingly relying on them to process personal information with feature-rich applications. This situation requires robust security mechanisms for protecting sensitive applications and data on mobile devices. Android, as one the most popular smartphone operating systems, provides two core security mechanisms, application sandboxing and a permission system. However, recent studies show that these mechanisms are vulnerable to be passed by a variety of attacks. In this paper, we argue for the need of designing and implementing more comprehensive security mechanisms for Android. We realize that mediating Inter-Process Communication (IPC) channels used by Android applications can mitigate prominent attacks effectively and efficiently. Based on this observation, we propose a practical multi-layer security framework called TripleMon to support policy-based mediation on Android IPC. We also discuss and evaluate a proof-of-concept prototype of TripleMon along with the experimental results derived from real malware samples and synthetic attacks.
M.Backes, S.Bugiel, S.Gerling and P.von Styp-Rekowsky, Android Security Framework: Extensible multi-layered access control on Android, in: 30th Annual Computer Security Applications Conference (ACSAC’14), ACM, 2014.
2.
S.Bugiel, L.Davi, A.Dmitrienko, T.Fischer, A.Sadeghi and B.Shastry, Towards taming privilege-escalation attacks on Android, in: Proceedings of the 19th Network and Distributed System Security Symposium (NDSS 2012), San Diego, CA, 2012.
3.
S.Bugiel, L.Davi, A.Dmitrienko, S.Heuser, A.Sadeghi and B.Shastry, Practical and lightweight domain isolation on Android, in: Proceedings of the 1st ACM Workshop on Security and Privacy in Smartphones and Mobile Devices, ACM, 2011, pp. 51–62. doi:10.1145/2046614.2046624.
4.
S.Bugiel, S.Heuser and A.-R.Sadeghi, Flexible and fine-grained mandatory access control on Android for diverse security and privacy policies, in: 22nd USENIX Security Symposium (USENIX Security ’13), USENIX, 2013.
5.
E.Chin, A.Felt, K.Greenwood and D.Wagner, Analyzing inter-application communication in Android, in: Proceedings of the 9th International Conference on Mobile Systems, Applications, and Services, ACM, 2011, pp. 239–252.
6.
M.Conti, V.Nguyen and B.Crispo, CRePE: Context-related policy enforcement for Android, in: Information Security, 2011, pp. 331–345. doi:10.1007/978-3-642-18178-8_29.
7.
CVE-2009-1185, Exploid exploit for Android, http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1185.
8.
CVE-2009-2692, Asroot exploit for Android, http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2692.
CVE-2011-1717, Skype stores sensitive user data in files that have weak permissions, http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1717.
11.
CVE-2011-1823, GingerBreak exploit for Android, http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1823.
12.
CVE-2011-3874, ZergRush exploit for Android, http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3874.
13.
CVE-2012-0056, Mempodipper exploit for Android, http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0056.
14.
CVE-2013-2094, Libperf_event exploit for Android, https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2094.
15.
L.Davi, A.Dmitrienko, A.Sadeghi and M.Winandy, Privilege escalation attacks on Android, in: Information Security, 2011, pp. 346–360. doi:10.1007/978-3-642-18178-8_30.
16.
B.Davis, B.Sanders, A.Khodaverdian and H.Chen, I-arm-droid: A rewriting framework for in-app reference monitors for Android applications, in: Proceedings of the IEEE Mobile Security Technologies, 2012.
17.
DefCon 18, These are not the permissions you’re looking for, 2010, http://goo.gl/sxHyV.
18.
M.Dietz, S.Shekhar, Y.Pisetsky, A.Shu and D.Wallach, Quire: Lightweight provenance for smart phone operating systems, in: 20th USENIX Security Symposium, 2011.
W.Enck, Defending users against smartphone apps: Techniques and future directions, in: Information Systems Security, 2011, pp. 49–70. doi:10.1007/978-3-642-25560-1_3.
W.Enck, M.Ongtang and P.McDaniel, On lightweight mobile phone application certification, in: Proceedings of the 16th ACM Conference on Computer and Communications Security, ACM, 2009, pp. 235–245.
23.
A.Felt, E.Chin, S.Hanna, D.Song and D.Wagner, Android permissions demystified, in: Proceedings of the 18th ACM Conference on Computer and Communications Security, ACM, 2011, pp. 627–638.
24.
A.Felt, M.Finifter, E.Chin, S.Hanna and D.Wagner, A survey of mobile malware in the wild, in: Proceedings of the 1st ACM Workshop on Security and Privacy in Smartphones and Mobile Devices, ACM, 2011, pp. 3–14. doi:10.1145/2046614.2046618.
25.
A.Felt, K.Greenwood and D.Wagner, The effectiveness of application permissions, in: Proceedings of the USENIX Conference on Web Application Development, 2011.
26.
A.Felt, H.Wang, A.Moshchuk, S.Hanna and E.Chin, Permission re-delegation: Attacks and defenses, in: Proceedings of the 20th USENIX Security Symposium, 2011.
27.
P.Gilbert, B.Chun, L.Cox and J.Jung, Automating privacy testing of smartphone applications, Technical Report CS-2011-02, Duke University, 2011.
H.Hao, V.Singh and W.Du, On the effectiveness of api-level access control using bytecode rewriting in Android, in: Proceedings of the 8th ACM SIGSAC Symposium on Information, Computer and Communications Security, ACM, 2013, pp. 25–36.
30.
T.Harada, T.Horie and K.Tanaka, Task oriented management obviates your onus on Linux, in: Linux Conference, 2004.
31.
IDC, Smartphones expected to grow 32.7% in 2013 fueled by declining prices and string emerging market demand, according to IDC, June 2013, http://www.idc.com/getdoc.jsp?containerId=prUS24143513.
32.
T.Jaeger, Reference monitor, in: Encyclopedia of Cryptography and Security, 2nd edn, 2011, pp. 1038–1040.
33.
J.Jeon, K.K.Micinski, J.A.Vaughan, A.Fogel, N.Reddy, J.S.Foster and T.Millstein, Dr. Android and Mr. Hide: Fine-grained permissions in Android applications, in: Proceedings of the Second ACM Workshop on Security and Privacy in Smartphones and Mobile Devices, ACM, 2012, pp. 3–14. doi:10.1145/2381934.2381938.
34.
N.Li, Q.Wang, W.Qardaji, E.Bertino, P.Rao, J.Lobo and D.Lin, Access control policy combining: Theory meets practice, in: Proceedings of the 14th ACM Symposium on Access Control Models and Technologies, ACM, 2009, pp. 135–144. doi:10.1145/1542207.1542229.
35.
D.Muthukumaran, T.Jaeger and V.Ganapathy, Leveraing ‘choice’ in authorization hook placement, in: 19th ACM Conference on Computer and Commumications Security, 2012.
36.
M.Nauman, S.Khan and X.Zhang, Apex: Extending android permission model and enforcement with user-defined runtime constraints, in: Proceedings of the 5th ACM Symposium on Information, Computer and Communications Security, ACM, 2010, pp. 328–332.
37.
OASIS, Extensible access control markup language (XACML) version 3.0, OASIS standard, http://docs.oasis-open.org/xacml/3.0/xacml-3.0-core-spec-os-en.html.
38.
M.Ongtang, S.McLaughlin, W.Enck and P.McDaniel, Semantically rich application-centric security in Android, in: Annual Computer Security Applications Conference, ACSAC’09, IEEE, 2009, p. 340–349.
39.
M.Ongtang, S.McLaughlin, W.Enck and P.McDaniel, Semantically rich application-centric security in Android, Security and Communication Networks5(6) (2012), 658–673. doi:10.1002/sec.360.
40.
N.Reddy, J.Jeon, J.Vaughan, T.Millstein and J.Foster, Application-centric security policies on unmodified Android, Technical Report 110017, UCLA Computer Science Department.
41.
Security alert, New rootsmart Android malware utilizes the GingerBreak root exploit, http://www.csc.ncsu.edu/faculty/jiang/RootSmart/.
42.
Security alert, New Android malware – dkfbootkit – moves towards the first android bootkit, http://www.csc.ncsu.edu/faculty/jiang/DKFBootKit/.
43.
P.J.Sheehan, B.Davis and H.Chen, Rewriting an Android app using retroskeleton, in: Proceedings of the 11th Annual International Conference on Mobile Systems, Applications, and Services, ACM, 2013, pp. 483–484. doi:10.1145/2462456.2465738.
44.
S.Smalley and R.Craig, Security Enhanced (SE) Android: Bringing flexible MAC to Android, in: NDSS, 2013.
45.
S.Smalley, C.Vance and W.Salamon, Implementing SELinux as a Linux security module, NAI Labs Report1 (2001), 43.
46.
C.Wright, C.Cowan, S.Smalley, J.Morris and G.Kroah-Hartman, Linux security modules: General security support for the Linux kernel, in: Proceedings of the 11th USENIX Security Symposium, Vol. 5, San Francisco, CA, 2002.
47.
R.Xu, H.Saïdi and R.Anderson, Aurasium: Practical policy enforcement for android applications, in: Proceedings of the 21st USENIX Security Symposium, 2012.
48.
X.Zhou, S.Demetriou, D.He, M.Naveed, X.Pan, X.Wang, C.A.Gunter and K.Nahrstedt, Identity, location, disease and more: Inferring your secrets from Android public resources, in: Proceedings of the ACM Conference on Computer and Communications Security, 2013.
49.
X.Zhou, Y.Lee, N.Zhang, M.Naveed and X.Wang, The peril of fragmentation: Security hazards in Android device driver customizations, in: Proceedings of the IEEE Symposium on Security and Privacy, IEEE, 2014.
50.
Y.Zhou and X.Jiang, Dissecting Android malware: Characterization and evolution, in: Proceedings of the 33rd IEEE Symposium on Security and Privacy (Oakland 2012), San Francisco, CA, 2012.
51.
Y.Zhou, X.Zhang, X.Jiang and V.Freeh, Taming information-stealing smartphone applications (on Android), in: Trust and Trustworthy Computing, 2011, pp. 93–107. doi:10.1007/978-3-642-21599-5_7.
