A software environment for confining malicious android applications via resource virtualization

Xiaolei Li; Guangdong Bai; Zhenkai Liang; Heng Yin

doi:10.1109/ICECCS.2013.38

A software environment for confining malicious android applications via resource virtualization

Xiaolei Li, Guangdong Bai, Zhenkai Liang, Heng Yin

Department of Electrical Engineering & Computer Science

Research output: Chapter in Book/Entry/Poem › Conference contribution

2 Scopus citations

Abstract

In the Android system, applications (apps) execute on the same platform that manages all system resources, where resource accesses are regulated through a permission-based mechanism. As a result, malicious apps get chances to abuse resources that are available on the Android platform. In this paper, we propose resource virtualization as a security mechanism to confine resource-abusing Android apps. The physical resources on a mobile device are virtualized to a different virtual view for selected Android apps. Resource virtualization simulates a partial but consistent virtual view of the Android resources. Therefore, it can not only confine the resource-abusing apps effectively, but also ensure the usability of them. We implement a system prototype, RVDroid, and evaluate it with real-world apps of various types. Our results demonstrate its effectiveness on malicious Android apps and its compatibility and usability on benign ones.

Original language	English (US)
Title of host publication	Proceedings - 2013 International Conference on Engineering of Complex Computer Systems, ICECCS 2013
Pages	208-211
Number of pages	4
DOIs	https://doi.org/10.1109/ICECCS.2013.38
State	Published - 2013
Event	18th International Conference on Engineering of Complex Computer Systems, ICECCS 2013 - Singapore, Singapore Duration: Jul 17 2013 → Jul 19 2013

Publication series

Name	Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS

Other

Other	18th International Conference on Engineering of Complex Computer Systems, ICECCS 2013
Country/Territory	Singapore
City	Singapore
Period	7/17/13 → 7/19/13

Keywords

Android malware
isolation
mobile security

ASJC Scopus subject areas

Hardware and Architecture
Computer Networks and Communications

Access to Document

10.1109/ICECCS.2013.38

Cite this

Li, X., Bai, G., Liang, Z., & Yin, H. (2013). A software environment for confining malicious android applications via resource virtualization. In Proceedings - 2013 International Conference on Engineering of Complex Computer Systems, ICECCS 2013 (pp. 208-211). Article 6601825 (Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS). https://doi.org/10.1109/ICECCS.2013.38

A software environment for confining malicious android applications via resource virtualization. / Li, Xiaolei; Bai, Guangdong; Liang, Zhenkai et al.
Proceedings - 2013 International Conference on Engineering of Complex Computer Systems, ICECCS 2013. 2013. p. 208-211 6601825 (Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS).

Research output: Chapter in Book/Entry/Poem › Conference contribution

Li, X, Bai, G, Liang, Z & Yin, H 2013, A software environment for confining malicious android applications via resource virtualization. in Proceedings - 2013 International Conference on Engineering of Complex Computer Systems, ICECCS 2013., 6601825, Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS, pp. 208-211, 18th International Conference on Engineering of Complex Computer Systems, ICECCS 2013, Singapore, Singapore, 7/17/13. https://doi.org/10.1109/ICECCS.2013.38

Li X, Bai G, Liang Z, Yin H. A software environment for confining malicious android applications via resource virtualization. In Proceedings - 2013 International Conference on Engineering of Complex Computer Systems, ICECCS 2013. 2013. p. 208-211. 6601825. (Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS). doi: 10.1109/ICECCS.2013.38

Li, Xiaolei ; Bai, Guangdong ; Liang, Zhenkai et al. / A software environment for confining malicious android applications via resource virtualization. Proceedings - 2013 International Conference on Engineering of Complex Computer Systems, ICECCS 2013. 2013. pp. 208-211 (Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS).

@inproceedings{6ed6f21bb6714e4684c0db011481aab8,

title = "A software environment for confining malicious android applications via resource virtualization",

abstract = "In the Android system, applications (apps) execute on the same platform that manages all system resources, where resource accesses are regulated through a permission-based mechanism. As a result, malicious apps get chances to abuse resources that are available on the Android platform. In this paper, we propose resource virtualization as a security mechanism to confine resource-abusing Android apps. The physical resources on a mobile device are virtualized to a different virtual view for selected Android apps. Resource virtualization simulates a partial but consistent virtual view of the Android resources. Therefore, it can not only confine the resource-abusing apps effectively, but also ensure the usability of them. We implement a system prototype, RVDroid, and evaluate it with real-world apps of various types. Our results demonstrate its effectiveness on malicious Android apps and its compatibility and usability on benign ones.",

keywords = "Android malware, isolation, mobile security",

author = "Xiaolei Li and Guangdong Bai and Zhenkai Liang and Heng Yin",

note = "Copyright: Copyright 2013 Elsevier B.V., All rights reserved.; 18th International Conference on Engineering of Complex Computer Systems, ICECCS 2013 ; Conference date: 17-07-2013 Through 19-07-2013",

year = "2013",

doi = "10.1109/ICECCS.2013.38",

language = "English (US)",

isbn = "9780769550077",

series = "Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS",

pages = "208--211",

booktitle = "Proceedings - 2013 International Conference on Engineering of Complex Computer Systems, ICECCS 2013",

}

TY - GEN

T1 - A software environment for confining malicious android applications via resource virtualization

AU - Li, Xiaolei

AU - Bai, Guangdong

AU - Liang, Zhenkai

AU - Yin, Heng

PY - 2013

Y1 - 2013

N2 - In the Android system, applications (apps) execute on the same platform that manages all system resources, where resource accesses are regulated through a permission-based mechanism. As a result, malicious apps get chances to abuse resources that are available on the Android platform. In this paper, we propose resource virtualization as a security mechanism to confine resource-abusing Android apps. The physical resources on a mobile device are virtualized to a different virtual view for selected Android apps. Resource virtualization simulates a partial but consistent virtual view of the Android resources. Therefore, it can not only confine the resource-abusing apps effectively, but also ensure the usability of them. We implement a system prototype, RVDroid, and evaluate it with real-world apps of various types. Our results demonstrate its effectiveness on malicious Android apps and its compatibility and usability on benign ones.

AB - In the Android system, applications (apps) execute on the same platform that manages all system resources, where resource accesses are regulated through a permission-based mechanism. As a result, malicious apps get chances to abuse resources that are available on the Android platform. In this paper, we propose resource virtualization as a security mechanism to confine resource-abusing Android apps. The physical resources on a mobile device are virtualized to a different virtual view for selected Android apps. Resource virtualization simulates a partial but consistent virtual view of the Android resources. Therefore, it can not only confine the resource-abusing apps effectively, but also ensure the usability of them. We implement a system prototype, RVDroid, and evaluate it with real-world apps of various types. Our results demonstrate its effectiveness on malicious Android apps and its compatibility and usability on benign ones.

KW - Android malware

KW - isolation

KW - mobile security

UR - http://www.scopus.com/inward/record.url?scp=84885209656&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84885209656&partnerID=8YFLogxK

U2 - 10.1109/ICECCS.2013.38

DO - 10.1109/ICECCS.2013.38

M3 - Conference contribution

AN - SCOPUS:84885209656

SN - 9780769550077

T3 - Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS

SP - 208

EP - 211

BT - Proceedings - 2013 International Conference on Engineering of Complex Computer Systems, ICECCS 2013

T2 - 18th International Conference on Engineering of Complex Computer Systems, ICECCS 2013

Y2 - 17 July 2013 through 19 July 2013

ER -

A software environment for confining malicious android applications via resource virtualization

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this