Security-by-contract on the .NET platform

Desmet, Lieven; Joosen, Wouter; Massacci, Fabio; Philippaerts, Pieter; Piessens, Frank; Siahaan, Ida; Vanoverberghe, Dries

doi:10.1016/j.istr.2008.02.001

Cited by 39 publications

(21 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Zhang et al [49] incorporate trusted computing and SELinux into mobile phones. Security-by-contract [9] retrofits Microsoft's compact .NET platform by associating an application with a "contract" of declared functionality. If the application deviates from the contractual policy, the runtime environment interrupts execution.…”

Section: Related Workmentioning

confidence: 99%

On lightweight mobile phone application certification

Enck

Ongtang

McDaniel

2009

Proceedings of the 16th ACM Conference on Computer and Communications Security

753

451

View full text Add to dashboard Cite

Users have begun downloading an increasingly large number of mobile phone applications in response to advancements in handsets and wireless networks. The increased number of applications results in a greater chance of installing Trojans and similar malware. In this paper, we propose the Kirin security service for Android, which performs lightweight certification of applications to mitigate malware at install time. Kirin certification uses security rules, which are templates designed to conservatively match undesirable properties in security configuration bundled with applications. We use a variant of security requirements engineering techniques to perform an in-depth security analysis of Android to produce a set of rules that match malware characteristics. In a sample of 311 of the most popular applications downloaded from the official Android Market, Kirin and our rules found 5 applications that implement dangerous functionality and therefore should be installed with extreme caution. Upon close inspection, another five applications asserted dangerous rights, but were within the scope of reasonable functional needs. These results indicate that security configuration bundled with Android applications provides practical means of detecting malware.

show abstract

Section: Related Workmentioning

confidence: 99%

On lightweight mobile phone application certification

Enck

Ongtang

McDaniel

2009

Proceedings of the 16th ACM Conference on Computer and Communications Security

753

451

View full text Add to dashboard Cite

show abstract

“…Kirin [27] and Saint [28] provide rule-based security mechanisms for Android that restrict application access to sensitive information. SxC [29] adds provable security contracts to Windows Mobile for the same purpose. Other systems [7], [14], [18], [30] leverage static analysis to discern information leaking in Android and iOS applications.…”

Section: Dynamic Tag System Performancementioning

confidence: 99%

D2Taint: Differentiated and dynamic information flow tracking on smartphones for numerous data sources

et al. 2013

2013 Proceedings IEEE INFOCOM

View full text Add to dashboard Cite

Abstract-With smartphones' meteoric growth in recent years, leaking sensitive information from them has become an increasingly critical issue. Such sensitive information can originate from smartphones themselves (e.g., location information) or from many Internet sources (e.g., bank accounts, emails). While prior work has demonstrated information flow tracking's (IFT's) effectiveness at detecting information leakage from smartphones, it can only handle a limited number of sensitive information sources. This paper presents a novel IFT tagging strategy using differentiated and dynamic tagging. We partition information sources into differentiated classes and store them in fixed-length tags. We adjust tag structure based on time-varying received information sources. Our tagging strategy enables us to track at runtime numerous information sources in multiple classes and rapidly detect information leakage from any of these sources. We design and implement D2Taint, an IFT system using our tagging strategy on real-world smartphones. We experimentally evaluate D2Taint's effectiveness with 84 real-world applications downloaded from Google Play. D2Taint reports that over 80% of them leak data to third-party destinations; 14% leak highly sensitive data. Our experimental evaluation using a standard benchmark tool illustrates D2Taint's effectiveness at handling many information sources on smartphones with moderate runtime and space overhead.

show abstract

“…The S×C paradigm was proposed for multi-application mobile devices (JavaME and .NET technologies) [30,31]. In the original S×C scheme an application arrives on the mobile platform equipped with a contract and signed by the developer.…”

Section: Related Workmentioning

confidence: 99%

“…The contract is matched by the device with the security policy before the execution [30]. In case of failure an inlined reference monitor is used [31]. This approach allows to run even potentially dangerous applications in a sandbox environment.…”

Section: Related Workmentioning

confidence: 99%

Load time code validation for mobile phone Java Cards

Gadyatskaya

Massacci

Nguyen³

et al. 2013

Journal of Information Security and Applications

Self Cite

View full text Add to dashboard Cite

Over-the-air (OTA) application installation and updates have become a common experience for many endusers of mobile phones. In contrast, OTA updates for applications on the secure elements (such as smart cards) are still hindered by the challenging hardware and certification requirements.The paper describes a security framework for Java Card-based secure element applications. Each application can declare a set of services it provides and a set of services it wishes to call, and its own security policy. An on-card checker verifies compliance and enforces the policy; thus an off-card validation of the application is no longer required.The framework has been optimized in order to be integrated with the run-time environment embedded into a concrete card. This integration has been tried and tested by a smart card manufacturer. In this paper we present the formal security model of the approach, its overall architecture and the implementation footprint which can fit on a real secure element. We also report the lessons learned and the intricacies of integrating a research prototype with a protected loader of the manufacturer.

show abstract

Security-by-contract on the .NET platform

Cited by 39 publications

References 9 publications

On lightweight mobile phone application certification

On lightweight mobile phone application certification

D2Taint: Differentiated and dynamic information flow tracking on smartphones for numerous data sources

Load time code validation for mobile phone Java Cards

Contact Info

Product

Resources

About