Building trusted path on untrusted device drivers for mobile devices

Proceedings of 5th Asia-Pacific Workshop on Systems, APSYS 2014

Volumn , Issue , 2014, Pages

  Li, Wenhao ^a   Ma, Mingyang ^a   Han, Jinchen ^b   Xia, Yubin ^a   Zang, Binyu ^a   Chu, Cheng Kang ^c   Li, Tieyan ^c  

^a SHANGHAI JIAO TONG UNIVERSITY   (China)

^b FUDAN UNIVERSITY   (China)

^c Huawei International Pte Ltd   (Singapore)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER CRIME; HUMAN COMPUTER INTERACTION; MALWARE;

COMMODITY SOFTWARE; NETWORK INTERACTION; ON-LINE BANKING; PASSIVE ATTACKS; SECURE DELEGATIONS; SECURE INTERACTIONS; SECURITY-CRITICAL; TRUSTED COMPUTING BASE;

MOBILE DEVICES;

EID: 84906872126     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2637166.2637225     Document Type: Conference Paper

References (15)

1. T6, an operating system for trustzone based trusted execution environment (tee) in arm-based systems. http://www.liwenhaosuper.com/projects/t6.
2. K. Borders and A. Prakash. Securing network input via a trusted input proxy. In Proc. USENIX HotSec, 2007.
3. L. Cai and H. Chen. Touchlogger: inferring keystrokes on touch screen from smartphone motion. In Proc. Usenix HotSec, 2011.
4. M. Jakobsson and H. Siadati. Spoofkiller: You can teach people how to pay, but not how to pay attention. In IEEE Workshop on Socio-Technical Aspects in Security and Trust, 2012.
5. M. Lange and S. Liebergeld. Crossover: secure and usable user interface for mobile devices with multiple isolated os personalities. In Proc. ACSAC, pages 249-257. ACM, 2013.
6. D. Liu and L. P. Cox. Veriui: Attested login for mobile devices. In Mobile Computing Systems and Applications, 2007. HotMobile 2014. Eighth IEEE Workshop on. IEEE, 2014.
7. D. Liu, E. Cuervo, V. Pistol, R. Scudellari, and L. P. Cox. Screen-pass: Secure password entry on touchscreen devices. In Proc. MobiSys, 2013.
8. L. Martignoni, P. Poosankam, M. Zaharia, J. Han, S. McCamant, D. Song, V. Paxson, A. Perrig, S. Shenker, and I. Stoica. Cloud terminal: secure access to sensitive applications from untrusted systems. In Proc. USENIX ATC, 2012.
9. J. M. McCune, B. J. Parno, A. Perrig, M. K. Reiter, and H. Isozaki. Flicker: An execution infrastructure for tcb minimization. In OS Review, volume 42, pages 315-328. ACM, 2008.
10. J. M. McCune, A. Perrig, and M. K. Reiter. Safe passage for passwords and other sensitive data. In NDSS, 2009.
11. Microsoft. How interactive logon works. http://technet.microsoft.com/en- us/library/cc780332 (v=ws.10).aspx, Jan 2009.
12. N. Santos, H. Raj, S. Saroiu, and A. Wolman. Using arm trust-zone to build a trusted language runtime for mobile applications. In Proc. ASPLOS. ACM, 2014.
13. T. Tong and D. Evans. GuarDroid: A Trusted Path for Password Entry. pages 1-10, Apr 2013.
14. X. Zhou, Y. Lee, N. Zhang, M. Naveed, and X. Wang. The peril of fragmentation: Security hazards in android device driver customizations. In IEEE Symposium on Security and Privacy, 2014.
15. Z. Zhou, V. D. Gligor, J. Newsome, and J. M. McCune. Building verifiable trusted path on commodity x86 computers. In IEEE Symposium on Security and Privacy, 2012.