A Methodology for Empirical Analysis of Permission-Based Security Models and its Application to Android

机译：基于权限的安全模型实证分析的方法论及其在Android中的应用

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Permission-based security models provide controlled access to various system resources. The expressiveness of the permission set plays an important role in providing the right level of granularity in access control. In this work, we present a methodology for the empirical analysis of permission-based security models which makes novel use of the Self-Organizing Map (SOM) algorithm of Kohonen (2001). While the proposed methodology may be applicable to a wide range of architectures, we analyze 1,100 Android applications as a case study. Our methodology is of independent interest for visualization of permission-based systems beyond our present Android-specific empirical analysis. We offer some discussion identifying potential points of improvement for the Android permission model, attempting to increase expressiveness where needed without increasing the total number of permissions or overall complexity.

机译：基于权限的安全模型提供对各种系统资源的受控访问。权限集的表达在访问控制中提供正确的粒度级别方面起着重要作用。在这项工作中，我们提出了一种基于权限的安全模型的经验分析方法，该方法新颖地利用了Kohonen（2001）的自组织映射（SOM）算法。虽然建议的方法可能适用于多种体系结构，但我们以案例研究为基础分析了1,100个Android应用程序。除了我们目前针对Android的经验分析之外，我们的方法对于基于权限的系统的可视化具有独立的兴趣。我们提供了一些讨论，以确定Android权限模型的潜在改进点，试图在不增加权限总数或整体复杂性的情况下，在需要的地方提高表达能力。

著录项

来源
《17th ACM conference on computer and communications security 2010》|2010年|p.73-84|共12页
会议地点 Chicago IL(US);Chicago IL(US)
作者
David Barrera; H. Guenes Kayacik; RC. van Oorschot; Anil Somayaji;
展开▼
作者单位

School of Computer Science, Carleton University Ottawa, ON, Canada;

School of Computer Science, Carleton University Ottawa, ON, Canada;

School of Computer Science, Carleton University Ottawa, ON, Canada;

School of Computer Science, Carleton University Ottawa, ON, Canada;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类安全保密;通信;
关键词
access control; self-organizing maps; permission-based security; smartphone operating systems; visualization;

机译：访问控制;自组织地图；基于权限的安全性；智能手机操作系统；可视化;

相似文献

外文文献
中文文献
专利

1. Analysis of Permission-based Security in Android through Policy Expert, Developer, and End User Perspectives [J] . Ajay Kumar Jha, Woo Jin Lee Journal of Universal Computer Science . 2016,第4期

机译：通过策略专家，开发人员和最终用户的角度分析Android中基于权限的安全性
2. Permission-based Analysis of Android Applications Using Categorization and Deep Learning Scheme [J] . Alimardani Hamidreza, Nazeh Mohammed MATEC Web of Conferences . 2019,第2016期

机译：使用分类和深度学习方案对Android应用程序进行基于权限的分析
3. An Informative and Comprehensive Behavioral Characteristics Analysis Methodology of Android Application for Data Security in Brain-Machine Interfacing [J] . Xin Su, Qingbo Gong, Yi Zheng, Computational and mathematical methods in medicine . 2020,第1期

机译：Android应用于脑机接口数据安全性的信息和全面行为特征分析方法
4. Various approaches in analyzing Android applications with its permission-based security models [C] . Rassameeroj Ittipon, Tanahashi Yuzuru 2011 IEEE International Conference on Electro/Information Technology . 2011

机译：使用基于权限的安全模型分析Android应用程序的各种方法
5. Mitigating Android Application Risk through Permission-Based Analysis and Risk Assessment Technique [D] . Alshehri, Ali Abdullah. 2019

机译：通过基于许可的分析和风险评估技术缓解Android应用风险
6. An Informative and Comprehensive Behavioral Characteristics Analysis Methodology of Android Application for Data Security in Brain-Machine Interfacing [O] . Xin Su, Qingbo Gong, Yi Zheng, 2020

机译：Android在脑机接口数据安全中的应用性信息综合行为特征分析方法
7. A Methodology for Empirical Analysis of Permission-Based Security Models and its Application to Android [O] . David Barrera, P. C. Van Oorschot, H. Güne¸s Kayacık, 2010

机译：基于权限的安全模型实证分析方法及其在android中的应用

A Methodology for Empirical Analysis of Permission-Based Security Models and its Application to Android

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅