English
Related papers

Related papers: SecComp: Towards Practically Defending Against Com…

200 papers

Undefined behavior in C often causes devastating security vulnerabilities. One practical mitigation is compartmentalization, which allows developers to structure large programs into mutually distrustful compartments with clearly specified…

Compartmentalization is good security-engineering practice. By breaking a large software system into mutually distrustful components that run with minimal privileges, restricting their interactions to conform to well-defined interfaces, we…

Cryptography and Security · Computer Science 2017-04-18 Yannis Juglaret , Catalin Hritcu , Arthur Azevedo de Amorim , Boris Eng , Benjamin C. Pierce

Android is a widely used operating system that employs a permission-based access control model. The Android Permissions System (APS) is responsible for mediating application resource requests. APS is a critical component of the Android…

Cryptography and Security · Computer Science 2022-08-24 Amirhosein Sayyadabdi , Behrouz Tork Ladani , Bahman Zamani

A single authentication bypass in a partner SDK grants attackers the identity of every partner in the ecosystem -- and millions of apps use SDKs with exactly this vulnerability. OWASP's 2024 Mobile Top 10 ranks Inadequate Supply Chain…

Cryptography and Security · Computer Science 2026-03-04 Ramanpreet Singh Khinda

Android Framework is a layer of software that exists in every Android system managing resources of all Android apps. A vulnerability in Android Framework can lead to severe hacks, such as destroying user data and leaking private…

Cryptography and Security · Computer Science 2016-11-04 Lannan Luo , Qiang Zeng , Chen Cao , Kai Chen , Jian Liu , Limin Liu , Neng Gao , Min Yang , Xinyu Xing , Peng Liu

With the rapid growth of mobile internet, mobile application, like website navigation, searching, e-Shopping and app download, etc. are all popular in worldwide. Meanwhile, it become more and more popular that traditional HTTP protocol,…

Cryptography and Security · Computer Science 2018-04-05 Pan Wang , Xuejiao Chen

Mobile devices have become ubiquitous due to centralization of private user information, contacts, messages and multiple sensors. Google Android, an open-source mobile Operating System (OS), is currently the market leader. Android…

Cryptography and Security · Computer Science 2018-08-19 Parvez Faruki , Hossein Fereidooni , Vijay Laxmi , Mauro Conti , Manoj Gaur

Smartphones and tablets have become prime targets for malware, due to the valuable private and corporate information they hold. While Anti-Virus (AV) program may successfully detect malicious applications (apps), they remain ineffective…

Cryptography and Security · Computer Science 2016-11-17 Mordechai Guri , Yuri Poliak , Bracha Shapira , Yuval Elovici

Android allows apps to communicate with its system services via system service helpers so that these apps can use various functions provided by the system services. Meanwhile, the system services rely on their service helpers to enforce…

Cryptography and Security · Computer Science 2022-03-25 Yi He , Yacong Gu , Purui Su , Kun Sun , Yajin Zhou , Zhi Wang , Qi Li

Stalkerware is a serious threat to individuals' privacy that is receiving increased attention from the security and privacy research communities. Existing works have largely focused on studying leading stalkerware apps, dual-purpose apps,…

Cryptography and Security · Computer Science 2025-08-05 Malvika Jadhav , Wenxuan Bao , Vincent Bindschaedler

Mobile apps provide various critical services, such as banking, communication, and healthcare. To this end, they have access to our personal information and have the ability to perform actions on our behalf. Hence, securing mobile apps is…

Software Engineering · Computer Science 2024-03-12 Joydeep Mitra , Venkatesh-Prasad Ranganath , Torben Amtoft , Mike Higgins

We propose a new formal criterion for evaluating secure compilation schemes for unsafe languages, expressing end-to-end security guarantees for software components that may become compromised after encountering undefined behavior---for…

Since Android has become a popular software platform for mobile devices recently; they offer almost the same functionality as personal computers. Malwares have also become a big concern. As the number of new Android applications tends to be…

Cryptography and Security · Computer Science 2020-06-05 Muhammad Zuhair Qadir , Atif Nisar Jilani , Hassam Ullah Sheikh

Fragmentation is a serious problem in the Android ecosystem. This problem is mainly caused by the fast evolution of the system itself and the various customizations independently maintained by different smartphone manufacturers. Many…

Software Engineering · Computer Science 2022-06-01 Pei Liu , Yanjie Zhao , Haipeng Cai , Mattia Fazzini , John Grundy , Li Li

Android Notifications can be considered as essential parts in Human-Smartphone interaction and inextricable modules of modern mobile applications that can facilitate User Interaction and improve User Experience. This paper presents how this…

Cryptography and Security · Computer Science 2018-01-26 Constantinos Patsakis , Efthimios Alepis

Mobile devices often distribute measurements from physical sensors to multiple applications using software multiplexing. On Android devices, the highest requested sampling frequency is returned to all applications, even if others request…

Cryptography and Security · Computer Science 2023-10-10 Carlton Shepherd , Jan Kalbantner , Benjamin Semal , Konstantinos Markantonakis

Android is the most popular operating systems for smartphones and is also well-known for its flexibility and security. However, although it is overall considered very secure, there are still some vulnerabilities occasionally discovered that…

Cryptography and Security · Computer Science 2022-04-13 Valerio Brussani

Mobile databases are the statutory backbones of many applications on smartphones, and they store a lot of sensitive information. However, vulnerabilities in the operating system or the app logic can lead to sensitive data leakage by giving…

Cryptography and Security · Computer Science 2018-05-31 Gokhan Kul , Shambhu Upadhyaya , Varun Chandola

Android OS supports multiple communication methods between apps. This opens the possibility to carry out threats in a collaborative fashion, c.f. the Soundcomber example from 2011. In this paper we provide a concise definition of collusion…

We design and develop a secret-sharing-scheme-based cyberattack detection model(S3CDM)that can detect unauthorized or illegal activities (especially insider attacks) and protect sensitive information within complex network infrastructures…

Cryptography and Security · Computer Science 2026-04-14 Chi Sing Chum , Jia Lu , Claire Tang , Xiaowen Zhang