Increasing Android Security using a Lightweight OVAL-based Vulnerability Assessment Framework

Martín Barrère 1, * Gaëtan Hurel 1 Rémi Badonnel 1 Olivier Festor 1
* Corresponding author
1 MADYNES - Management of dynamic networks and services
INRIA Nancy - Grand Est, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : Mobile computing devices and the services offered by them are utilized by millions of users on a daily basis. However, they operate in hostile environments getting exposed to a wide variety of threats. Accordingly, vulnerability management mechanisms are highly required. We present in this paper a novel approach for increasing the security of mobile devices by efficiently detecting vulnerable configurations. In that context, we propose a modeling for performing vulnerability assessment activities as well as an OVAL-based distributed framework for ensuring safe configurations within the Android platform. We also describe an implementation prototype and evaluate its performance through an extensive set of experiments.
Document type :
Conference papers
IEEE. 5th IEEE Symposium on Configuration Analytics and Automation (SafeConfig'12), Oct 2012, Baltimore, United States. IEEE Xplore, 2012


https://hal.inria.fr/hal-00747640
Contributor : Martín Barrère <>
Submitted on : Friday, November 2, 2012 - 1:18:12 PM
Last modification on : Tuesday, October 28, 2014 - 6:26:34 PM

File

SafeConfig2012-Barrere.pdf
fileSource_public_author

Identifiers

  • HAL Id : hal-00747640, version 1

Collections

Citation

Martín Barrère, Gaëtan Hurel, Rémi Badonnel, Olivier Festor. Increasing Android Security using a Lightweight OVAL-based Vulnerability Assessment Framework. IEEE. 5th IEEE Symposium on Configuration Analytics and Automation (SafeConfig'12), Oct 2012, Baltimore, United States. IEEE Xplore, 2012. <hal-00747640>

Export

Share

Metrics

Consultation de
la notice

231

Téléchargement du document

277