Toward Engineering a Secure Android Ecosystem

Abstract

The openness and extensibility of Android have made it a popular platform for mobile devices and a strong candidate to drive the Internet-of-Things. Unfortunately, these properties also leave Android vulnerable, attracting attacks for profit or fun. To mitigate these threats, numerous issue-specific solutions have been proposed. With the increasing number and complexity of security problems and solutions, we believe this is the right moment to step back and systematically re-evaluate the Android security architecture and security practices in the ecosystem. We organize the most recent security research on the Android platform into two categories: the software stack and the ecosystem. For each category, we provide a comprehensive narrative of the problem space, highlight the limitations of the proposed solutions, and identify open problems for future research. Based on our collection of knowledge, we envision a blueprint for engineering a secure, next-generation Android ecosystem.

Document Details

Document Type
Pub Defense Publication
Publication Date
Aug 13, 2016
Source ID
10.1145/2963145

Entities

People

  • Byoungyoung Lee
  • Chengyu Song
  • Chenxiong Qian
  • Cong Zheng
  • Kangjie Lu
  • Meng Xu
  • Ming-wei Shih
  • Ruian Duan
  • Sangho Lee
  • Taesoo Kim
  • Yang Ji
  • Yeongjin Jang

Organizations

  • Defense Advanced Research Projects Agency
  • Electronics and Telecommunications Research Institute
  • Georgia Tech
  • National Science Foundation
  • Office of Naval Research

Tags

Fields of Study

  • Computer science

Readers

  • Agent-Based Social Robotics and Mobile-Assisted Learning in Virtual Environments.
  • Distributed Systems and Data Platform Development
  • Systems Analysis and Design

Technology Areas

  • 5G
  • 5G - Internet of Things
  • Space