ETRI-Knowledge Sharing Plaform

KOREAN
논문 검색
Type SCI
Year ~ Keyword

Detail

Conference Paper Dynamic Permission Re-Enforcement Technique for Protecting Application from Others with Over-Privileged Permission at Run Time
Cited 1 time in scopus Share share facebook twitter linkedin kakaostory
Authors
Boheung Chung, Youngsung Jeon, Jeongnyeo Kim
Issue Date
2015-11
Citation
International Conference on Security Technology (SecTech) 2015, pp.13-16
Language
English
Type
Conference Paper
DOI
https://dx.doi.org/10.1109/SecTech.2015.8
Abstract
Recently users want to have more powerful devices and capabilities to satisfy their demands ever than before. However, there are many vulnerabilities caused by uncontrolled and over-privileged permission at run time. Without this concern to correctly control the permission at execution time, we propose dynamically enforce permission technique in the paper. For this purpose, we classify applications as secure or non-secure and validate their permissions at run time. If the secure one is already running, the other which has the same permission will be suspended until the former finishes his execution. Providing dynamic control of permission, we implement our technique on Android with slightly modifying a few Java classes in it. With the help of our proposed method, users can easily execute their secure application in separated from others and find over-privileged permission a run time. Through this technique we can efficiently prohibit unintended application's behavior to attain higher privilege without theirs acknowledgement.
KSP Keywords
Dynamic control, Run-Time, execution time