A Probabilistic Cost-efficient Approach for Mobile Security Assessment

Martín Barrère 1, * Gaëtan Hurel 1 Rémi Badonnel 1 Olivier Festor 1
* Corresponding author
1 MADYNES - Management of dynamic networks and services
Inria Nancy - Grand Est, LORIA - NSS - Department of Networks, Systems and Services
Abstract : The development of mobile technologies and services has contributed to the large-scale deployment of smartphones and tablets. These environments are exposed to a wide range of security attacks and may contain critical information about users such as contact directories and phone calls. Assessing configuration vulnerabilities is a key challenge for maintaining their security, but this activity should be performed in a lightweight manner in order to minimize the impact on their scarce resources. In this paper we present a novel approach for assessing configuration vulnerabilities in mobile devices by using a probabilistic cost-efficient security framework. We put forward a probabilistic assessment strategy supported by a mathematical model and detail our assessment framework based on OVAL vulnerability descriptions. We also describe an implementation prototype and evaluate its feasibility through a comprehensive set of experiments.
Document type :
Conference papers
Complete list of metadatas

Cited literature [14 references]  Display  Hide  Download
https://hal.inria.fr/hal-00875219
Contributor : Martín Barrère <>
Submitted on : Monday, October 21, 2013 - 2:27:30 PM
Last modification on : Thursday, February 7, 2019 - 5:34:47 PM
Long-term archiving on : Friday, April 7, 2017 - 2:08:42 PM

File

Barrere-CNSM-2013.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-00875219, version 1

Collections

INRIA | UNIV-LORRAINE | LORIA-NSS | LORIA

Citation

Martín Barrère, Gaëtan Hurel, Rémi Badonnel, Olivier Festor. A Probabilistic Cost-efficient Approach for Mobile Security Assessment. IFIP/IEEE International Conference on Network and Service Management (CNSM'13), Oct 2013, Zurich, Switzerland. ⟨hal-00875219⟩

Export

BibTeX TEI DC DCterms EndNote

Share

Metrics

Record views

659

Files downloads

2693

Contact


archive-ouverte@inria.fr