English
Related papers

Related papers: SELint: an SEAndroid policy analysis tool

200 papers

Starting from the 5.0 Lollipop release all Android processes must be run inside confined SEAndroid access control domains. As a result, Android device manufacturers were compelled to develop SEAndroid expertise in order to create policies…

Cryptography and Security · Computer Science 2015-10-29 Elena Reshetova , Filippo Bonazzi , Thomas Nyman , Ravishankar Borgaonkar , N. Asokan

To investigate the status quo of SEAndroid policy customization, we propose SEPAL, a universal tool to automatically retrieve and examine the customized policy rules. SEPAL applies the NLP technique and employs and trains a wide&deep model…

Cryptography and Security · Computer Science 2021-02-22 Dongsong Yu , Guangliang Yang , Guozhu Meng , Xiaorui Gong , Xiu Zhang , Xiaobo Xiang , Xiaoyu Wang , Yue Jiang , Kai Chen , Wei Zou , Wenke Lee , Wenchang Shi

Android adopted SELinux's mandatory access control (MAC) mechanisms in 2013. Since then, billions of Android devices have benefited from mandatory access control security policies. These policies are expressed in a variety of rules,…

Cryptography and Security · Computer Science 2018-12-04 Bumjin Im , Ang Chen , Dan Wallach

Security-Enhanced Linux (SELinux) is a Linux kernel module that allows for a role-based access control (RBAC) mechanism. It provides a fine-grained security framework enabling system administrators to define security policies at the system…

Cryptography and Security · Computer Science 2023-12-11 Divyam Pahuja , Alvin Tang , Klim Tsoutsman

Android filesystem access control provides a foundation for Android system integrity. Android utilizes a combination of mandatory (e.g., SEAndroid) and discretionary (e.g., UNIX permissions) access control, both to protect the Android…

Cryptography and Security · Computer Science 2020-08-11 Yu-Tsung Lee , William Enck , Haining Chen , Hayawardh Vijayakumar , Ninghui Li , Daimeng Wang , Zhiyun Qian , Giuseppe Petracca , Trent Jaeger

Transparent and efficient vulnerability and patch disclosure are still a challenge in the security community, essentially because of the poor-quality documentation stemming from the lack of standards. SECOM is a recently-proposed standard…

Cryptography and Security · Computer Science 2023-01-18 Sofia Reis , Corina Pasareanu , Rui Abreu , Hakan Erdogmus

Android's filesystem access control is a crucial aspect of its system integrity. It utilizes a combination of mandatory access controls, such as SELinux, and discretionary access controls, like Unix permissions, along with specialized…

Cryptography and Security · Computer Science 2023-03-01 Yu-Tsung Lee , Haining Chen , William Enck , Hayawardh Vijayakumar , Ninghui Li , Zhiyun Qian , Giuseppe Petracca , Trent Jaeger

Security Enhanced Linux (SELinux) is a security architecture for Linux implementing mandatory access control. It has been used in numerous security-critical contexts ranging from servers to mobile devices. But this is challenging as SELinux…

Cryptography and Security · Computer Science 2022-06-01 Lorenzo Ceragioli , Letterio Galletta , Pierpaolo Degano , David Basin

Android is the most widely deployed end-user focused operating system. With its growing set of use cases encompassing communication, navigation, media consumption, entertainment, finance, health, and access to sensors, actuators, cameras,…

Ensuring compliance of norms and policies when working on administrative law cases can be difficult to manage for government organisations. Automating this process could save a lot of time, effort and ensure compliance. Prior research…

Human-Computer Interaction · Computer Science 2024-12-20 Nina Verheijen

The reliability of mobile devices is a challenge for vendors, since the mobile software stack has significantly grown in complexity. In this paper, we study how to assess the impact of faults on the quality of user experience in the Android…

Software Engineering · Computer Science 2019-12-10 Domenico Cotroneo , Antonio Ken Iannillo , Roberto Natella , Stefano Rosiello

Security-critical system requirements are increasingly enforced through mandatory access control systems. These systems are controlled by security policies, highly sensitive system components, which emphasizes the paramount importance of…

Cryptography and Security · Computer Science 2017-06-13 Peter Amthor

Network traffic whitelisting has emerged as a dominant approach for securing consumer IoT devices. However, determining what the whitelisted behavior of an IoT device should be remains an open challenge. Proposals to date have relied on…

Cryptography and Security · Computer Science 2020-03-09 Corentin Thomasset , David Barrera

With the development of Internet of Things (IoT), it is gaining a lot of attention. It is important to secure the embedded systems with low overhead. The Linux Seccomp is widely used by developers to secure the kernels by blocking the…

Cryptography and Security · Computer Science 2025-10-07 Dongyang Zhan , Zhaofeng Yu , Xiangzhan Yu , Hongli Zhang , Lin Ye , Likun Liu

Many phone vendors use Android as their underlying OS, but often extend it to add new functionality and to make it compatible with their specific phones. When a new version of Android is released, phone vendors need to merge or re-apply…

Software Engineering · Computer Science 2019-03-18 Mehran Mahmoudi , Sarah Nadi

The open-source nature of the Android OS makes it possible for manufacturers to ship custom versions of the OS along with a set of pre-installed apps, often for product differentiation. Some device vendors have recently come under scrutiny…

Cryptography and Security · Computer Science 2019-05-08 Julien Gamba , Mohammed Rashed , Abbas Razaghpanah , Juan Tapiador , Narseo Vallina-Rodriguez

For the dramatic increase of Android malware and low efficiency of manual check process, deep learning methods started to be an auxiliary means for Android malware detection these years. However, these models are highly dependent on the…

Cryptography and Security · Computer Science 2019-09-10 Ji Wang , Qi Jing , Jianbo Gao

Given natural language test case description for an Android application, existing testing approaches require developers to manually write scripts using tools such as Appium and Espresso to execute the corresponding test case. This process…

With the increasing usage of smartphones a plethora of security solutions are being designed and developed. Many of the security solutions fail to cope with advanced attacks and are not aways properly designed for smartphone platforms.…

Cryptography and Security · Computer Science 2015-02-18 Asaf Shabtai , Dudu Mimran , Yuval Elovici

Translating security intent into deployable network enforcement rules and maintaining their effectiveness despite evolving cyber threats remains a largely manual process in most Security Operations Centers (SOCs). In large and heterogeneous…

Cryptography and Security · Computer Science 2026-04-03 Davide Colaiacomo , Chiara Bonfanti , Cataldo Basile
‹ Prev 1 2 3 10 Next ›