论文信息 - Runtime Verification Meets Android Security

Runtime Verification Meets Android Security

A dynamic security mechanism for Android-powered devices based on runtime verification is introduced, which lets users monitor the behaviour of installed applications. The general idea and a prototypical implementation are outlined, an application to real-world security threats shown, and the underlying logical foundations, relating to the employed specification formalism, sketched.

Jan-Christoph Küster | Andreas Bauer | Gil Vegliach

[1] Kang G. Shin,et al. Behavioral detection of malware on mobile handsets , 2008, MobiSys '08.

[2] Patrick D. McDaniel,et al. Semantically rich application-centric security in Android , 2012 .

[3] Rajeev Alur,et al. A Temporal Logic of Nested Calls and Returns , 2004, TACAS.

[4] Grigore Rosu,et al. Java-MOP: A Monitoring Oriented Programming Environment for Java , 2005, TACAS.

[5] A. Goldberg,et al. Runtime verification for autonomous spacecraft software , 2005, 2005 IEEE Aerospace Conference.

[6] Byung-Gon Chun,et al. TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones , 2010, OSDI.

[7] Martin Leucker,et al. Runtime Verification for LTL and TLTL , 2011, TSEM.

[8] David A. Wagner,et al. The Effectiveness of Application Permissions , 2011, WebApps.

[9] Eric Filiol,et al. Behavioral detection of malware: from a survey towards an established taxonomy , 2008, Journal in Computer Virology.

[10] Steve Hanna,et al. Android permissions demystified , 2011, CCS '11.