Direct Resource Hijacking in Android
文献类型:期刊论文
| 作者 | Gu, YC ; Li, Q ; Zhang, HT ; Su, PR ; Zhang, XW ; Feng, DG |
| 刊名 | IEEE INTERNET COMPUTING
 |
| 出版日期 | 2016 |
| 卷号 | 20期号:5页码:46-56 |
| ISSN号 | 1089-7801 |
| 中文摘要 | In this article, the authors discuss a new attack called a direct resource hijacking attack (or resource hijacking attack), which directly hijacks exported components or permissions on components owned by benign applications. To tackle this vulnerability, they propose a fine-grained resource access control framework in Android and introduce a certificate-augmented resource naming mechanism. With this method, malicious apps can't hijack a victim app's permissions to steal its private data in the victim app, or hijack a victim app's components to retrieve data that's delivered to the victim app. |
| 英文摘要 | In this article, the authors discuss a new attack called a direct resource hijacking attack (or resource hijacking attack), which directly hijacks exported components or permissions on components owned by benign applications. To tackle this vulnerability, they propose a fine-grained resource access control framework in Android and introduce a certificate-augmented resource naming mechanism. With this method, malicious apps can't hijack a victim app's permissions to steal its private data in the victim app, or hijack a victim app's components to retrieve data that's delivered to the victim app. |
| 收录类别 | SCI |
| 语种 | 英语 |
| WOS记录号 | WOS:000387067100007 |
| 公开日期 | 2016-12-09 |
| 源URL | [http://ir.iscas.ac.cn/handle/311060/17307]  |
| 专题 | 软件研究所_软件所图书馆_期刊论文 |
| 推荐引用方式 GB/T 7714 | Gu, YC,Li, Q,Zhang, HT,et al. Direct Resource Hijacking in Android[J]. IEEE INTERNET COMPUTING,2016,20(5):46-56. |
| APA | Gu, YC,Li, Q,Zhang, HT,Su, PR,Zhang, XW,&Feng, DG.(2016).Direct Resource Hijacking in Android.IEEE INTERNET COMPUTING,20(5),46-56. |
| MLA | Gu, YC,et al."Direct Resource Hijacking in Android".IEEE INTERNET COMPUTING 20.5(2016):46-56. |
入库方式: OAI收割
来源:软件研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。