CoDRA: Context-based dynamically reconfigurable access control system for android. (1st January 2018)
- Record Type:
- Journal Article
- Title:
- CoDRA: Context-based dynamically reconfigurable access control system for android. (1st January 2018)
- Main Title:
- CoDRA: Context-based dynamically reconfigurable access control system for android
- Authors:
- Kumar Thanigaivelan, Nanda
Nigussie, Ethiopia
Hakkala, Antti
Virtanen, Seppo
Isoaho, Jouni - Abstract:
- Abstract: We present, CoDRA, an access control system for Android that offers context-based dynamically configurable restrictions, fine-granular policy and ability to enforce various policy configurations at different levels of system operation. The fine grained policy and policy diversification are achieved through the application of context based on resource features. Policies are established and classified, as system-wide and application-wise, after careful examination on application activities. The dynamic generation and enforcement of policies enables greater protection for open resources, e.g., sensors. CoDRA enforces different policy configuration on user basis through its integration of multiuser support in Android. A simple graphical control panel is provided for policy administration. CoDRA performance and overhead were analysed by testing 55 popular applications in Nexus 5 and 9 devices. The results proved that CoDRA successfully fulfilled its objectives by introducing 1–20 ms executional overhead. It occupied about 800kB memory for policy storage and 5kB of memory for every additional user context space. The evaluation also proved that the tested applications did not exhibit any adverse effects during execution even with full restriction, and higher granularity in policies. Abstract : Highlights: A context-based dynamically reconfigurable access control system for Android is proposed. Attribute-based context is used to create fine granular policies. Policies areAbstract: We present, CoDRA, an access control system for Android that offers context-based dynamically configurable restrictions, fine-granular policy and ability to enforce various policy configurations at different levels of system operation. The fine grained policy and policy diversification are achieved through the application of context based on resource features. Policies are established and classified, as system-wide and application-wise, after careful examination on application activities. The dynamic generation and enforcement of policies enables greater protection for open resources, e.g., sensors. CoDRA enforces different policy configuration on user basis through its integration of multiuser support in Android. A simple graphical control panel is provided for policy administration. CoDRA performance and overhead were analysed by testing 55 popular applications in Nexus 5 and 9 devices. The results proved that CoDRA successfully fulfilled its objectives by introducing 1–20 ms executional overhead. It occupied about 800kB memory for policy storage and 5kB of memory for every additional user context space. The evaluation also proved that the tested applications did not exhibit any adverse effects during execution even with full restriction, and higher granularity in policies. Abstract : Highlights: A context-based dynamically reconfigurable access control system for Android is proposed. Attribute-based context is used to create fine granular policies. Policies are enforced dynamically for the open resources upon initial access and statically for the protected resources during installation. The developed system is evaluated with 55 popular applications to verify the fulfillment of defined objectives. … (more)
- Is Part Of:
- Journal of network and computer applications. Volume 101(2018)
- Journal:
- Journal of network and computer applications
- Issue:
- Volume 101(2018)
- Issue Display:
- Volume 101, Issue 2018 (2018)
- Year:
- 2018
- Volume:
- 101
- Issue:
- 2018
- Issue Sort Value:
- 2018-0101-2018-0000
- Page Start:
- 1
- Page End:
- 17
- Publication Date:
- 2018-01-01
- Subjects:
- Context-based access control -- Android -- Mobile security -- Dynamic policy configuration -- Fine-grained policy
Microcomputers -- Periodicals
Computer networks -- Periodicals
Application software -- Periodicals
Micro-ordinateurs -- Périodiques
Réseaux d'ordinateurs -- Périodiques
Logiciels d'application -- Périodiques
Application software
Computer networks
Microcomputers
Periodicals
004.05
004 - Journal URLs:
- http://www.sciencedirect.com/science/journal/10848045 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.jnca.2017.10.015 ↗
- Languages:
- English
- ISSNs:
- 1084-8045
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 5021.410600
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 5474.xml