English

ConXsense - Automated Context Classification for Context-Aware Access Control

Cryptography and Security 2014-06-06 v2

Abstract

We present ConXsense, the first framework for context-aware access control on mobile devices based on context classification. Previous context-aware access control systems often require users to laboriously specify detailed policies or they rely on pre-defined policies not adequately reflecting the true preferences of users. We present the design and implementation of a context-aware framework that uses a probabilistic approach to overcome these deficiencies. The framework utilizes context sensing and machine learning to automatically classify contexts according to their security and privacy-related properties. We apply the framework to two important smartphone-related use cases: protection against device misuse using a dynamic device lock and protection against sensory malware. We ground our analysis on a sociological survey examining the perceptions and concerns of users related to contextual smartphone security and analyze the effectiveness of our approach with real-world context data. We also demonstrate the integration of our framework with the FlaskDroid architecture for fine-grained access control enforcement on the Android platform.

Keywords

Cite

@article{arxiv.1308.2903,
  title  = {ConXsense - Automated Context Classification for Context-Aware Access Control},
  author = {Markus Miettinen and Stephan Heuser and Wiebke Kronz and Ahmad-Reza Sadeghi and N. Asokan},
  journal= {arXiv preprint arXiv:1308.2903},
  year   = {2014}
}

Comments

Recipient of the Best Paper Award

R2 v1 2026-06-22T01:08:44.916Z