• IEMEK Journal of Embedded Systems and Applications
• /
• v.10 no.6
• /
• pp.335-343
• /
• 2015

As the usage of mobile devices becomes diverse, a number of attacks on Android also have increased. Among the attacks, Android can be compromised by flashing a new image of compromised Android Linux. In order to solve this problem, we propose SeBo (Secure Boot System) which prevents compromised Android Linux by guaranteeing secure boot environment for mobile devices based on ARM TrustZone architecture. SeBo checks the hash value of the Android Linux image before the Android Linux executes. SeBo detects all the attacks within 5 seconds. Moreover, since SeBo only trusts the Secure Bootloader from Secure World, SeBo can reduce the additional overhead of checking the Normal Bootloader from Normal World.

• Journal of KIISE
• /
• v.44 no.4
• /
• pp.352-362
• /
• 2017

This paper analyzes security threats in Security Enhanced (SE) Android and proposes a new technique to efficiently protect application data including private information on rooted Android phones. On an unrooted device, application data can be accessed by the application itself according to the access control models. However, on a rooted device, a root-privileged shell can disable part or all of the access control model enforcement procedures. Therefore, a root-privileged shell can directly access sensitive data of other applications, and a malicious application can leak the data of other applications outside the device. To address this problem, the proposed technique allows only some specific processes to access to the data of other applications including private information by modifying the existing SEAndroid Linux Security Module (LSM) Hook function. Also, a new domain type of process is added to the target system to enforce stronger security rules. In addition, the proposed technique separates the directory type of a newly installed application and the directory type of previously installed applications. Experimental results show that the proposed technique can effectively protect the data of each application and incur performance overhead up to or less than 2 seconds.

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.6 no.3
• /
• pp.169-177
• /
• 2010

As expectations about success of smart phones that install Android, an open mobile platform which was developed by Google, are increasing, the development of applications based on the Android has attracted a lot of interest. Especially, game applications have been well received by users. In this paper, we develop an application based on the Android for curling which was adopted as a competitive sport in the Winter Olympic Games. Curling is a sport game played by two teams. The rules of the game are simple, but it is an intelligent one that requires various strategies for victory. In this paper, the curling game based on the Android provides functions, such as pitching, sweeping, collision, and foul handling, that are required in real curling game by using technologies, such as touch screen or accelerometer sensor.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.26 no.5
• /
• pp.1105-1119
• /
• 2016

Android includes SEAndroid as a core security feature. SELinux is applied to Android OS as a SEAndroid, because there exists structural differences between Linux and Android. Since the security of SEAndroid depends on the reliable policy if the policy is tampered by the attacker, the serious security problems can be occurred. So we must protect policies which are the most important thing in SEAndoroid. In this paper, we analyze the process of SEAndroid policy updating to find out vulnerabilities and study the attack points on policy tampering. And we propose the SPPA to detect whether the policy is modified by an attacker. Moreover, we prove the performance and the effect of our proposed method on mobile device.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.5
• /
• pp.1201-1215
• /
• 2015

Obfuscation tools can be used to protect android applications from reverse-engineering in android environment. However, obfuscation tools can also be misused to protect malicious applications. In order to evade detection of anti-virus, malware authors often apply obfuscation techniques to malicious applications. It is difficult to analyze the functionality of obfuscated malicious applications until it is deobfuscated. Therefore, a study on deobfuscation is certainly required to address the obfuscated malicious applications. In this paper, we analyze APKs which are obfuscated by commercial obfuscation tools and propose the deobfuscation method that can statically identify obfuscation options and deobfuscate it. Finally, we implement automatic identification and deobfuscation tool, then show the results of evaluation.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.20 no.1
• /
• pp.72-80
• /
• 2016

Recently, IM(Instant Messenger) of KakaoTalk is being used on smart devices such as smartphones. Because IM service can carry user and/or suspector's various information including life style, geographical position, psychology and crime history, forensic analysis on IM service is desirable. But, forensic analysis for KakaoTalk is not well studied yet. This paper studies a proper forensic method for KakaoTalks, finds artifacts location, reconstruct the list of contacts and the chronology of the messages that have been exchanged by users. Proposed methodology and analyzed information can provide a basic platform for forensic tool.

• Journal of Platform Technology
• /
• v.9 no.4
• /
• pp.42-50
• /
• 2021

Recently, the need to introduce smart farms is increasing in order to solve the problems of intensifying competition such as a decrease in rural population due to aging, a decrease in production, and the inflow of foreign agricultural products, and accordingly, the need for education is increasing. This paper is a study on the implementation of an Android-based IoT smart farm for education so that it can be used in a real environment by reducing the farm's smart farm system. To confirm that Android-based education can be applied in a real environment using the IoT smart farm for education, experiments were performed in automatic mode and manual mode using Bluetooth, Wi-Fi, and server/client communication methods. In the automatic mode, the current status can be checked in real time by receiving all data, and in the manual mode, commands are transmitted in real time using the received sensor data and remote control is performed. As a result of the experiment, it was possible to understand the characteristics of each communication method, and it was confirmed that remote monitoring and remote control of the smart farm using the Android App was possible.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.18 no.5
• /
• pp.275-281
• /
• 2018

Along with the growing market for pets and the increasing interest in pet management, the need for pet management systems is increasing. Development of IoT-related technologies has made it possible to develop the related systems. This paper implements a variety of functions through Bluetooth 4.0 and LoRa communication between devices using Arduino and Android applications depending on distances. In the paper, users can receive real-time location information through the communication between Android applications and devices attached to pets, store pet information, manage pet information, and store stroll courses more conveniently with the developed system.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.9 no.11
• /
• pp.1255-1266
• /
• 2014

This thesis presents MPU module, Base board and sensor module which are efficient industrial control through design and manufacture as developing S5PV210 CPU of SAMSUNG used by ARM Cortex-A8 based on Android which is Open mobile platform is installed to embedded system. Data for temperature and humidity which are received by sensor module proved the suitability and validity for the real time framework design as implementing application program employed the smart phone App with hybrid application based on DB of web server.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2021.05a
• /
• pp.655-656
• /
• 2021

April 2021, Disaster Safety Communication Network services have been launched, but security functions are weak at the beginning of the service. The current security method for Android-based APP is using Google Protect's technology to detect malware. Malware is difficult to detect directly because there are various types, so by applying malware detection technology that combines AI and Google Protect technology to Disaster Safety Communication Networks, research on how to implement 'AI-based Disaster Satety Communication Network Protect'.