Increasing Android Security using a Lightweight OVAL-based Vulnerability Assessment Framework

Martín Barrère 1, * Gaëtan Hurel 1 Rémi Badonnel 1 Olivier Festor 1
* Corresponding author
1 MADYNES - Management of dynamic networks and services
Inria Nancy - Grand Est, LORIA - NSS - Department of Networks, Systems and Services
Abstract : Mobile computing devices and the services offered by them are utilized by millions of users on a daily basis. However, they operate in hostile environments getting exposed to a wide variety of threats. Accordingly, vulnerability management mechanisms are highly required. We present in this paper a novel approach for increasing the security of mobile devices by efficiently detecting vulnerable configurations. In that context, we propose a modeling for performing vulnerability assessment activities as well as an OVAL-based distributed framework for ensuring safe configurations within the Android platform. We also describe an implementation prototype and evaluate its performance through an extensive set of experiments.
Document type :
Conference papers
Complete list of metadatas

Cited literature [18 references]  Display  Hide  Download

https://hal.inria.fr/hal-00747640
Contributor : Martín Barrère <>
Submitted on : Friday, November 2, 2012 - 1:18:12 PM
Last modification on : Thursday, February 7, 2019 - 5:34:43 PM
Long-term archiving on : Saturday, December 17, 2016 - 7:03:32 AM

File

SafeConfig2012-Barrere.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-00747640, version 1

Collections

Citation

Martín Barrère, Gaëtan Hurel, Rémi Badonnel, Olivier Festor. Increasing Android Security using a Lightweight OVAL-based Vulnerability Assessment Framework. 5th IEEE Symposium on Configuration Analytics and Automation (SafeConfig'12), IEEE, Oct 2012, Baltimore, United States. ⟨hal-00747640⟩

Share

Metrics

Record views

637

Files downloads

629