Characterizing SEAndroid Policies in the Wild

Elena Reshetova; Filippo Bonazzi; Thomas Nyman; Ravishankar Borgaonkar; and N. Asokan

arXiv:1510.05497·cs.CR·October 29, 2015·2 cites

Characterizing SEAndroid Policies in the Wild

Elena Reshetova, Filippo Bonazzi, Thomas Nyman, Ravishankar Borgaonkar, and N. Asokan

PDF

Open Access

TL;DR

This paper analyzes SEAndroid policies across various Android devices to identify common issues and introduces tools, including SEAL, to improve policy design and analysis.

Contribution

It provides the first comprehensive analysis of real-world SEAndroid policies and offers practical tools to enhance policy development and troubleshooting.

Findings

01

Identified common patterns and problems in SEAndroid policies

02

Developed the SEAL tool for policy analysis

03

Provided insights into policy design challenges

Abstract

Starting from the 5.0 Lollipop release all Android processes must be run inside confined SEAndroid access control domains. As a result, Android device manufacturers were compelled to develop SEAndroid expertise in order to create policies for their device-specific components. In this paper we analyse SEAndroid policies from a number of 5.0 Lollipop devices on the market, and identify patterns of common problems we found. We also suggest some practical tools that can improve policy design and analysis. We implemented the first of such tools, SEAL.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdvanced Malware Detection Techniques · Digital Rights Management and Security · Internet Traffic Analysis and Secure E-voting