A multi-layer mandatory access control mechanism for mobile devices based on virtualization

2008 5th IEEE Consumer Communications and Networking Conference, CCNC 2008

Volumn , Issue , 2008, Pages 251-256

  Lee, Sung Min ^a   Suh, Sang Bum ^a   Jeong, Bokdeuk ^a   Mo, Sangdok ^a  

^a SAMSUNG Electronics   (South Korea)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER CRIME; MECHANISMS; MOBILE DEVICES; OBJECT RECOGNITION; PORTABLE EQUIPMENT; RELIABILITY; SECURITY SYSTEMS; TELECOMMUNICATION EQUIPMENT;

ACCESS-CONTROL MECHANISMS; BOOTSTRAP TIME; CONSUMER COMMUNICATIONS; CONTROL MODULES; DOS ATTACKS; EFFECTIVELY CONTROL; FILE SYSTEMS; FINE-GRAINED CONTROL; MANDATORY ACCESS CONTROL; MULTI LAYERING; PERFORMANCE EFFICIENCY; REAL-WORLD; SHARING RESOURCES; SYSTEM RESOURCES; UPPER LAYERS; VIRTUAL MACHINE MONITOR; VIRTUALIZATION; VIRTUALIZATION TECHNOLOGY;

ACCESS CONTROL;

EID: 51949117926     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ccnc08.2007.63     Document Type: Conference Paper

References (26)

1. Canalys, "Worldwide smart phone market," http://www.canalys. com/pr/2005/r2005102.htm, 2005.
2. A. Bose and K. G. Shin, "On Mobile Viruses Exploiting Messaging and Bluetooth Services," Second International Conference on Security and Privacy in Communication Networks, USA, 2006.
3. TowerGroup, "Cyber-criminals target mobile banking," http://www.vnunet.com/vnunet /news/2173161/ cyber-criminals-target-mobile, 2007.
4. Open Mobile Terminal Platform Alliance, "OMTP Approved Deliverables," 2006. http://www.omtp.org/approved.html
5. Intel and NTT DoCoMo, "Open and Secure Terminal Initiative (OSTI) Architecture Specification V1.0," 2006.
6. R. Sailer, T. Jaeger, E. Valdez, R. Caceres, R. Perez, S. Berger, J. L. Griffin, and L. van Doorn, "Building a MAC-Based Security Architecture for the Xen Open-Source Hypervisor," Annual Computer Security Application Conference, 2005.
7. R. Sailer, E. Valdez, T. Jaeger, R. Perez, L. van Doorn, J. L. Griffin, and S. Berger. "sHype:A secure hypervisor approach to trusted virtualized systems," IBM Research Report, 2005.
8. rd Xen Summit, , IBM T.J. Watson, 2006.
9. th ACM Symposium on Operating Systems Principles, 2003.
10. R. Spencer, S. Smalley, P. Loscocco, M. Hibler, D. Andersen, and J. Lepreau, "The Flask Security Architecture: System Support for Diverse Security Policies," In Proceedings of the 8th USENIX Security Symposium, 1999.
11. th Annual IEEE Consumer Communications & Networking Conference, USA, January 2008.
12. D. C. Nash, T. L. Martin, D. S. Ha, and M. S. Hsiao, "Towards an Intrusion Detection System for Battery Exhaustion Attacks on Mobile Computing Devices," In Proceedings of the Pervasive Computing and Communications Workshops, pp. 141-145, 2005.
13. T. Martin, M. Hsiao, D. Ha, and J. Krishnaswami, "Denial-of-Service Attacks on Battery-powered Mobile Computers," Second IEEE International Conference on Pervasive Computing and Communications, pp. 309-318, 2004.
14. R. Racic, D. Ma, H. Chen, "Exploiting MMS Vulnerabilities to Stealthily Exhaust Mobile Phone's Battery," Second International Conference on Security and Privacy in Communication Networks, USA, 2006.
15. Symantec Corporation, "SymbOS.Cabir," http://securityresponse. symantec.com/avcenter/venc/data/epoc.cabir.html
16. M. Peinado, Y. Chen, P. England, and J. Manferdelli, "NGSCB: A Trusted Open System," vol. 3108 of Lecture Notes in Computer Science, pp. 86-97, 2004.
17. A. Gostve, "Mobile Malware Evolution: An Overview, Part 1," 2006. http://www.viruslist.com/en/analysis?pubid=200119916
18. W. A. Arbaugh, D. J. Farber, J. M. Smith, "A Secure and Reliable Bootstrap Architecture," In Proceedings of IEEE Security and Privacy Conference, pp. 65-71, 1997.
19. S. T. King, P. M. Chen, Y. Wang, C. Verbowski, H. J. Wang, and J. R. Lorch, "SubVirt: Implementing malware with virtual machines", In Proceedings of the 2006 IEEE Symposium on Security and Privacy, 2006.
20. National Security Agency, "Security-Enhanced Linux (SELinux)," http://www.nsa.gov/selinux
21. L. Badger, D. F. Sterne, D. L. Sherman, K. M. Walker, and S. A. Haghighat, "Practical Domain and Type Enforcement for UNIX," In Proceedings of the IEEE Symposium on Security and Privacy, 1995.
22. D. E. Bell and L. J. LaPadula, "Secure Computer Systems: Unified Exposition and Multics Interpretation," MITRE, 1976.
23. K. J. Biba, "Integrity Considerations for Secure Computer Systems," USAF Electronic System Division, 1977.
24. James P. Anderson et. al., "Computer Security Technology Planning Study," Technical Report ESD-TR-73-51, Vol. I+II, Air Force Systems Command, USAF, 1972.
25. Freescale, i.MX21 Applications Processor: Reference Manual," 2004.
26. M. Rajagopalan, S. Debray, M. A. Hiltunen, and R. D. Schlichting, "Reducing the Energy Cost of Application/OS Interactions," TR03-19, Department of Computer Science, University of Arizona, Tucson, 2003