Abstract
The success of Android phones makes them a prominent target for malicious software, in particular since the Android permission system turned out to be inadequate to protect the user against security and privacy threats. This work presents AppGuard, a powerful and flexible system for the enforcement of user-customizable security policies on untrusted Android applications. AppGuard does not require any changes to a smartphone's firmware or root access. Our system offers complete mediation of security-relevant methods based on callee-site inline reference monitoring. We demonstrate the general applicability of AppGuard by several case studies, e.g., removing permissions from overly curious apps as well as defending against several recent real-world attacks on Android phones. Our technique exhibits very little space and runtime overhead. AppGuard is publicly available, has been invited to the Samsung Apps market, and has had more than 500,000 downloads so far. © 2013 Springer-Verlag.
Cite
CITATION STYLE
Backes, M., Gerling, S., Hammer, C., Maffei, M., & Von Styp-Rekowsky, P. (2013). AppGuard - Enforcing user requirements on android apps. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7795 LNCS, pp. 543–548). https://doi.org/10.1007/978-3-642-36742-7_39
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
