DiffUser: Differentiated user access control on smartphones

Ni, Xudong; Yang, Ziqiang; Bai, Xin; Champion, Adam C.; Xuan, Dong

doi:10.1109/mobhoc.2009.5337017

Cited by 14 publications

(1 citation statement)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Liu et al [68] proposed xShare, a user access framework for the mobile phone ecosystem that enforces policies on file-level accesses. Ni et al [69] introduced DiffUser, an access privilege-based user access management paradigm for the Android environment, which is only practical to a single device. In a smart home environment, Zeng et al [13] developed an access control prototype with several control options for users in the smart home.…”

Section: Related Workmentioning

confidence: 99%

A Closer Look at Access Control in Multi-User Voice Systems

Shafei,

Tan

2024

IEEE Access

View full text Add to dashboard Cite

Voice-controlled systems have revolutionized user interactions, making technology more accessible and intuitive across various settings. In multi-user environments, such as households, voice assistants like Amazon Alexa are favored as they enable seamless interaction with devices and services. However, the convenience these systems offer comes with challenges, especially concerning privacy and security. In environments where multiple users interact with the same voice assistant, the need for sophisticated access control mechanisms becomes apparent to prevent unauthorized access to sensitive information. This study assesses the effectiveness of voice access control mechanisms within these multi-user contexts, shedding light on the inherent privacy risks associated with shared voice-controlled systems. First, we show that the current access control is vulnerable in handling users' private data. Second, we develop a framework for automated testing to explore the access control weaknesses to determine whether the accessible data is of consequence, as not all information may be equally sensitive or vital to users. Third, we identify two flaws within the access control mechanisms offered by the voice system, and we show that existing access controls are susceptible to unauthorized access. Finally, our study shows that operations on the system are protected, whereas other operations that are not protected still reveal user's private information. These findings underscore the need for enhanced privacy safeguards and improved access control systems in multi-user environments. We offer recommendations to mitigate risks associated with unauthorized access, shedding light on securing the user's private data on the voice assistant.

show abstract

Section: Related Workmentioning

confidence: 99%

A Closer Look at Access Control in Multi-User Voice Systems

Shafei,

Tan

2024

IEEE Access

View full text Add to dashboard Cite

show abstract

Virtualization Techniques for Mobile Systems

Jaramillo¹,

Furht²,

Agarwal³

2014

View full text Add to dashboard Cite

Research in Progress - Defending Android Smartphones from Malware Attacks

Omar

Dawson

2013

2013 Third International Conference on Advanced Computing and Communication Technologies (ACCT)

View full text Add to dashboard Cite

Smartphones are becoming enriched with confidential information due to their powerful computational capabilities and attractive communications features. The Android smartphone is one of the most widely used platforms by businesses and users alike. This is partially because Android smartphones use the free, open-source Linux as the underlying operating system, which allows development of applications by any software developer. This research study aims to explore security risks associated with the use of Android smartphones and the sensitive information they contain; the researcher devised a survey questionnaire to investigate and further understand security threats targeting Android smartphones. The survey also intended to study the scope of malware attacks targeting Android phones and the effectiveness of existing defense measures. The study surveyed the average Android users as the target population to understand how they perceive security and what security controls they use to protect their smartphones.

show abstract

DiffUser: Differentiated user access control on smartphones

Cited by 14 publications

References 6 publications

A Closer Look at Access Control in Multi-User Voice Systems

A Closer Look at Access Control in Multi-User Voice Systems

Virtualization Techniques for Mobile Systems

Research in Progress - Defending Android Smartphones from Malware Attacks

Contact Info

Product

Resources

About