Title :
Application Lockbox for Mobile Device Security
Author :
Luo, Jim ; Kang, Myong
Author_Institution :
Center for High Assurance Comput., Naval Res. Lab., Washington, DC, USA
Abstract :
The security requirements for mobile devices are inherently different from stationary machines. Mobility exposes them to different threat environments and excludes them from relying on external physical security. Productive application from enterprise, government, and military will invariably deal with sensitive data. A risk management and security framework is needed to protect applications and data on mobile devices when they are lost. We propose an application lockbox concept that compartmentalizes mobile devices at the application level. It combines policy enforcement mechanisms and support for sophisticated access polices to mitigate the exposure when the device is lost. It is a practical approach that improves the security of mobile devices without requiring significant changes in the current mobile technology.
Keywords :
authorisation; mobile handsets; risk management; application lockbox concept; mobile device security; physical security; policy enforcement mechanisms; risk management; security framework; stationary machine; Access control; Encryption; Mobile communication; Mobile handsets; Operating systems; TCP; compartmentalization; mobility; security; tactical;
Conference_Titel :
Information Technology: New Generations (ITNG), 2011 Eighth International Conference on
Conference_Location :
Las Vegas, NV
Print_ISBN :
978-1-61284-427-5
Electronic_ISBN :
978-0-7695-4367-3
DOI :
10.1109/ITNG.2011.66
