论文信息 - A cloud-based intrusion detection and response system for mobile phones

A cloud-based intrusion detection and response system for mobile phones

As smart mobile phones, so called smartphones, are getting more complex and more powerful to efficiently provide more functionalities, concerns are increasing regarding security threats against the smartphone users. Since smart-phones use the same software architecture as in PCs, they are vulnerable to similar classes of security risks such as viruses, trojans, and worms [6]. In this paper, we propose a cloud-based smartphone-specific intrusion detection and response engine, which continuously performs an in-depth forensics analysis on the smartphone to detect any misbehavior. In case a misbehavior is detected, the proposed engine decides upon and takes optimal response actions to thwart the ongoing attacks. Despite the computational and storage resource limitations in smartphone devices, The engine can perform a complete and in-depth analysis on the smartphone, since all the investigations are carried out on an emulated device in a cloud environment.

[1] Apu Kapadia,et al. Soundcomber: A Stealthy and Context-Aware Sound Trojan for Smartphones , 2011, NDSS.

[2] Celeste Biever,et al. Phone viruses: how bad is it? , 2005 .

[3] P. Coulton,et al. Mobile phone vulnerabilities: a new generation of malware , 2004, IEEE International Symposium on Consumer Electronics, 2004.

[4] William H. Sanders,et al. Cost-aware systemwide intrusion defense via online forensics and on-demand detector deployment , 2010, SafeConfig '10.

[5] Songwu Lu,et al. SmartSiren: virus detection and alert for smartphones , 2007, MobiSys '07.

[6] Jason Flinn,et al. Virtualized in-cloud security services for mobile devices , 2008, MobiVirt '08.

[7] Herbert Bos,et al. Paranoid Android: versatile protection for smartphones , 2010, ACSAC '10.