TY - GEN
T1 - AFrame
T2 - 29th Annual Computer Security Applications Conference, ACSAC 2013
AU - Zhang, Xiao
AU - Ahlawat, Amit
AU - Du, Wenliang
N1 - Copyright:
Copyright 2014 Elsevier B.V., All rights reserved.
PY - 2013
Y1 - 2013
N2 - Android uses a permission-based security model to restrict applications from accessing private data and privileged resources. However, the permissions are assigned at the application level, so even untrusted third-party libraries, such as advertisement, once incorporated, can share the same privileges as the entire application, leading to over-privileged problems. We present AFrame, a developer friendly method to isolate untrusted third-party code from the host applications. The isolation achieved by AFrame covers not only the process/permission isolation, but also the display and input isolation. Our AFrame framework is implemented through a minimal change to the existing Android code base; our evaluation results demonstrate that it is effective in isolating the privileges of untrusted third-party code from applications with reasonable performance overhead.
AB - Android uses a permission-based security model to restrict applications from accessing private data and privileged resources. However, the permissions are assigned at the application level, so even untrusted third-party libraries, such as advertisement, once incorporated, can share the same privileges as the entire application, leading to over-privileged problems. We present AFrame, a developer friendly method to isolate untrusted third-party code from the host applications. The isolation achieved by AFrame covers not only the process/permission isolation, but also the display and input isolation. Our AFrame framework is implemented through a minimal change to the existing Android code base; our evaluation results demonstrate that it is effective in isolating the privileges of untrusted third-party code from applications with reasonable performance overhead.
UR - http://www.scopus.com/inward/record.url?scp=84893257561&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84893257561&partnerID=8YFLogxK
U2 - 10.1145/2523649.2523652
DO - 10.1145/2523649.2523652
M3 - Conference contribution
AN - SCOPUS:84893257561
SN - 9781450320153
T3 - ACM International Conference Proceeding Series
SP - 9
EP - 18
BT - Proceedings - 29th Annual Computer Security Applications Conference, ACSAC 2013
Y2 - 9 December 2013 through 13 December 2013
ER -