In this paper, we survey the problem of mobile security. Therefore, we introduce a formal technique allowing the enforcement of security policy on this parallel system. The main idea was to give the end-user the possibility to choose his mobile security level and to control it by choosing a risk level. So we adapted this notion to the syntax as well as the semantic of the used languages. We use an extended version of process algebra ACP (Algebra of Communicating Process) to specify the program and we define a logic that goes well with this language, to specify security policy. An example is given at the end to illustrate the approach and apply it with a real Android application from Google Play.
展开▼
