Title :
A Light-Weight Software Environment for Confining Android Malware
Author :
Xiaolei Li ; Guangdong Bai ; Thian, Benjamin ; Zhenkai Liang ; Heng Yin
Author_Institution :
Nat. Univ. of Singapore, Singapore, Singapore
fDate :
June 30 2014-July 2 2014
Abstract :
Mobile devices are becoming increasingly general-purpose, and therefore the physical boundary used to separate important resources disappears. As a result, malicious applications (apps) get chances to abuse resources that are available on the mobile platform. In this paper, we propose resource virtualization as a security mechanism for the Android system to strengthen the physical barrier between many types of resources and confine resource-abusing Android apps. The physical resources on a mobile device are virtualized to a different virtual view for selected Android apps. Resource virtualization simulates a partial but consistent virtual view of the Android resources. Therefore, it can not only confine the resource-abusing apps effectively, but also ensure the usability of these apps. We implement a system prototype, RVL, and evaluate it with real-world apps of various types. Our results demonstrate its effectiveness on malicious Android apps and its compatibility and usability on benign Android apps.
Keywords :
Android (operating system); invasive software; mobile computing; telecommunication security; Android malware; RVL; light-weight software environment; malicious Android apps; mobile device; resource virtualization; resource-abusing Android apps; security mechanism; Androids; Humanoid robots; Linux; Resource virtualization; Security; Smart phones; Virtualization; Android malware; isolation; mobile security;
Conference_Titel :
Software Security and Reliability-Companion (SERE-C), 2014 IEEE Eighth International Conference on
Conference_Location :
San Francisco, CA
DOI :
10.1109/SERE-C.2014.34
