A risk assessment method for smartphones

IFIP Advances in Information and Communication Technology

Volumn 376 AICT, Issue , 2012, Pages 443-456

  Theoharidou, Marianthi ^a   Mylonas, Alexios ^a   Gritzalis, Dimitris ^a  

^a ATHENS UNIVERSITY OF ECONOMICS AND BUSINESS   (Greece)

Author keywords

Android; Risk Assessment; Security; Smartphone; Threat

Indexed keywords

ANDROID; ATTACK VECTOR; MULTI-PURPOSE; RISK ASSESSMENT METHODS; SECURITY; SECURITY THREATS; THREAT; UBIQUITOUS DEVICES; USER INPUT;

ROBOTS; SECURITY OF DATA; SIGNAL ENCODING; SMARTPHONES;

RISK ASSESSMENT;

EID: 84863927277     PISSN: 18684238     EISSN: None     Source Type: Book Series    
DOI: 10.1007/978-3-642-30436-1_36     Document Type: Conference Paper

References (21)

1. Becher, M., Freiling, F., Hoffmann, J., Holz, T., Uellenbeck, S., Wolf, C.: Mobile Security Catching Up? Revealing the Nuts and Bolts of the Security of Mobile Devices. In: Proc. of the 2011 IEEE Symposium on Security and Privacy (SP 2011), pp. 96-111. IEEE Computer Society, USA (2011)
2. Caldwell, T.: Smart security. Network Security 2011(4), 5-9 (2011)
3. Dietz, M., Shekhar, S., Pisetsky, Y., Shu, A., Wallach, D.: Quire: lightweight provenance for smart phone operating systems. In: 20th USENIX Security Symposium, USA (2011)
4. Dlamini, M., Eloff, J., Eloff, M.: Information security: The moving target. Computers & Security 28(3-4), 189-198 (2009)
5. Enck, W., Octeau, D., McDaniel, P., Chaudhuri, S.: A study of android application security. In: Proc. of the 20th USENIX Conference on Security (SEC 2011), USA, p. 21 (2011)
6. Hogben, G., Dekker, M.: Smartphones: Information security risks, opportunities and recommendations for users. Technical Report, ENISA (2010)
7. Felt, A.P., Greenwood, K., Wagner, D.: The effectiveness of application permissions. In: 2nd USENIX Conference on Web Application Development (WebApps 2011), pp. 75-86 (2011)
8. Gartner: Market Share: Mobile Communication Devices by Region and Country, 3Q11. Technical Report (2011)
9. Grace, M., Zhou, Y., Wang, Z., Jiang, X.: Systematic Detection of Capability Leaks in Stock Android Smartphones. In: Proc. of the 19th Network and Distributed System Security Symposium, NDSS 2012 (2012)
10. ISO/IEC: Information technology - Security techniques - Information security risk management. ISO/IEC 27005:2008, 1st edn. (2008)
11. Jansen, W., Scarfone, K.: Guidelines on Cell Phone and PDA Security. Recommendations of the National Institute of Standards and Technology, Special Publication 800-124 (2008)
12. Jeon, W., Kim, J., Lee, Y., Won, D.: A Practical Analysis of Smartphone Security. In: Smith, M.J., Salvendy, G. (eds.) HCII 2011, Part I. LNCS, vol. 6771, pp. 311-320. Springer, Heidelberg (2011)
13. Kaspersky Labs: IT Threat Evolution: Q3 (2011), http://www.securelist. com/en/analysis/204792201/IT-Threat-Evolution-Q3-2011
14. Ledermüller, T., Clarke, N.L.: Risk Assessment for Mobile Devices. In: Furnell, S., Lambrinoudakis, C., Pernul, G. (eds.) TrustBus 2011. LNCS, vol. 6863, pp. 210-221. Springer, Heidelberg (2011)
15. Mylonas, A.: Smartphone spying tools. MSc Thesis, Royal Holloway, University of London (2008)
16. Mylonas, A., Dritsas, S., Tsoumas, B., Gritzalis, D.: Smartphone Security Evaluation: The Malware Attack Case. In: Samarati, P., Lopez, J. (eds.) International Conference on Security and Cryptography (SECRYPT 2011), pp. 25-36. SciTePress (2011)
17. Nachenberg, C.: A Window Into Mobile Device Security. Technical Report, Symantec Security Response (2011)
18. Oppliger, R.: Security and Privacy in an Online World. Computer 44(9), 21-22 (2011)
19. OWASP: Top 10 Mobile Risks, http://www.owasp.org/index.php/WASP-Mobile- Security-Project
20. Redman, P.: John Girard, L.: Magic quadrant for mobile device management software. Technical Report G00211101, Gartner (2011)
21. Shabtai, A., Fledel, Y., Kanonov, U., Elovici, Y., Dolev, S., Glezer, C.: Google Android: A Comprehensive Security Assessment. IEEE Security and Privacy 8(2), 35-44 (2010)