• Title/Summary/Keyword: SE for Android

Search Result 32, Processing Time 0.022 seconds

SeBo: Secure Boot System for Preventing Compromised Android Linux

  • Kim, Tong Min;Kim, Se Won;Yoo, Chuck
    • IEMEK Journal of Embedded Systems and Applications
    • /
    • v.10 no.6
    • /
    • pp.335-343
    • /
    • 2015
  • As the usage of mobile devices becomes diverse, a number of attacks on Android also have increased. Among the attacks, Android can be compromised by flashing a new image of compromised Android Linux. In order to solve this problem, we propose SeBo (Secure Boot System) which prevents compromised Android Linux by guaranteeing secure boot environment for mobile devices based on ARM TrustZone architecture. SeBo checks the hash value of the Android Linux image before the Android Linux executes. SeBo detects all the attacks within 5 seconds. Moreover, since SeBo only trusts the Secure Bootloader from Secure World, SeBo can reduce the additional overhead of checking the Normal Bootloader from Normal World.

An Effective Technique for Protecting Application Data using Security Enhanced (SE) Android in Rooted Android Phones (루팅된 안드로이드 폰에서 SEAndroid를 이용한 효과적인 앱 데이터 보호 기법)

  • Jeong, Youn-sik;Cho, Seong-je
    • Journal of KIISE
    • /
    • v.44 no.4
    • /
    • pp.352-362
    • /
    • 2017
  • This paper analyzes security threats in Security Enhanced (SE) Android and proposes a new technique to efficiently protect application data including private information on rooted Android phones. On an unrooted device, application data can be accessed by the application itself according to the access control models. However, on a rooted device, a root-privileged shell can disable part or all of the access control model enforcement procedures. Therefore, a root-privileged shell can directly access sensitive data of other applications, and a malicious application can leak the data of other applications outside the device. To address this problem, the proposed technique allows only some specific processes to access to the data of other applications including private information by modifying the existing SEAndroid Linux Security Module (LSM) Hook function. Also, a new domain type of process is added to the target system to enforce stronger security rules. In addition, the proposed technique separates the directory type of a newly installed application and the directory type of previously installed applications. Experimental results show that the proposed technique can effectively protect the data of each application and incur performance overhead up to or less than 2 seconds.

Development of Curling Game based on Android Mobile Platform (안드로이드 기반의 컬링 게임 개발)

  • Cho, Jae Hyeon;Ko, Se Hwan;Kim, Youn Hee;Lim, Hae Chull
    • Journal of Korea Society of Digital Industry and Information Management
    • /
    • v.6 no.3
    • /
    • pp.169-177
    • /
    • 2010
  • As expectations about success of smart phones that install Android, an open mobile platform which was developed by Google, are increasing, the development of applications based on the Android has attracted a lot of interest. Especially, game applications have been well received by users. In this paper, we develop an application based on the Android for curling which was adopted as a competitive sport in the Winter Olympic Games. Curling is a sport game played by two teams. The rules of the game are simple, but it is an intelligent one that requires various strategies for victory. In this paper, the curling game based on the Android provides functions, such as pitching, sweeping, collision, and foul handling, that are required in real curling game by using technologies, such as touch screen or accelerometer sensor.

SEAndroid Policy Protection Architecture Design and Implementation in Android (안드로이드 시스템 하에서의 SEAndroid 정책 보호 기법 설계 및 구현)

  • Yoo, Seok-man;Park, Jin-Hyung;Lee, Dong-hoon
    • Journal of the Korea Institute of Information Security & Cryptology
    • /
    • v.26 no.5
    • /
    • pp.1105-1119
    • /
    • 2016
  • Android includes SEAndroid as a core security feature. SELinux is applied to Android OS as a SEAndroid, because there exists structural differences between Linux and Android. Since the security of SEAndroid depends on the reliable policy if the policy is tampered by the attacker, the serious security problems can be occurred. So we must protect policies which are the most important thing in SEAndoroid. In this paper, we analyze the process of SEAndroid policy updating to find out vulnerabilities and study the attack points on policy tampering. And we propose the SPPA to detect whether the policy is modified by an attacker. Moreover, we prove the performance and the effect of our proposed method on mobile device.

A Study on Deobfuscation Method of Android and Implementation of Automatic Analysis Tool (APK에 적용된 난독화 기법 역난독화 방안 연구 및 자동화 분석 도구 구현)

  • Lee, Se Young;Park, Jin Hyung;Park, Moon Chan;Suk, Jae Hyuk;Lee, Dong Hoon
    • Journal of the Korea Institute of Information Security & Cryptology
    • /
    • v.25 no.5
    • /
    • pp.1201-1215
    • /
    • 2015
  • Obfuscation tools can be used to protect android applications from reverse-engineering in android environment. However, obfuscation tools can also be misused to protect malicious applications. In order to evade detection of anti-virus, malware authors often apply obfuscation techniques to malicious applications. It is difficult to analyze the functionality of obfuscated malicious applications until it is deobfuscated. Therefore, a study on deobfuscation is certainly required to address the obfuscated malicious applications. In this paper, we analyze APKs which are obfuscated by commercial obfuscation tools and propose the deobfuscation method that can statically identify obfuscation options and deobfuscate it. Finally, we implement automatic identification and deobfuscation tool, then show the results of evaluation.

Forensic Analysis of KakaoTalk Messenger on Android Environment (안드로이드 환경에서의 KakaoTalk 메신저의 포렌식 분석 방법론 제안 및 분석)

  • Yoon, Jongcheol;Park, Yongsuk
    • Journal of the Korea Institute of Information and Communication Engineering
    • /
    • v.20 no.1
    • /
    • pp.72-80
    • /
    • 2016
  • Recently, IM(Instant Messenger) of KakaoTalk is being used on smart devices such as smartphones. Because IM service can carry user and/or suspector's various information including life style, geographical position, psychology and crime history, forensic analysis on IM service is desirable. But, forensic analysis for KakaoTalk is not well studied yet. This paper studies a proper forensic method for KakaoTalks, finds artifacts location, reconstruct the list of contacts and the chronology of the messages that have been exchanged by users. Proposed methodology and analyzed information can provide a basic platform for forensic tool.

A Study on the Implementation of an Android-based Educational IoT Smartfarm (안드로이드 기반 교육용 IoT 스마트팜 구현에 관한 연구)

  • Park, Se-Jun
    • Journal of Platform Technology
    • /
    • v.9 no.4
    • /
    • pp.42-50
    • /
    • 2021
  • Recently, the need to introduce smart farms is increasing in order to solve the problems of intensifying competition such as a decrease in rural population due to aging, a decrease in production, and the inflow of foreign agricultural products, and accordingly, the need for education is increasing. This paper is a study on the implementation of an Android-based IoT smart farm for education so that it can be used in a real environment by reducing the farm's smart farm system. To confirm that Android-based education can be applied in a real environment using the IoT smart farm for education, experiments were performed in automatic mode and manual mode using Bluetooth, Wi-Fi, and server/client communication methods. In the automatic mode, the current status can be checked in real time by receiving all data, and in the manual mode, commands are transmitted in real time using the received sensor data and remote control is performed. As a result of the experiment, it was possible to understand the characteristics of each communication method, and it was confirmed that remote monitoring and remote control of the smart farm using the Android App was possible.

Implementation of Pet Management System using Lora Module (LoRa 모듈을 이용한 반려동물 관리시스템 구현)

  • Park, Se-Jun;Choi, Eik-Hyeon;Yoo, Tae-Jun;Mo, Ji-Soo;Lee, Sang-Ho
    • The Journal of the Institute of Internet, Broadcasting and Communication
    • /
    • v.18 no.5
    • /
    • pp.275-281
    • /
    • 2018
  • Along with the growing market for pets and the increasing interest in pet management, the need for pet management systems is increasing. Development of IoT-related technologies has made it possible to develop the related systems. This paper implements a variety of functions through Bluetooth 4.0 and LoRa communication between devices using Arduino and Android applications depending on distances. In the paper, users can receive real-time location information through the communication between Android applications and devices attached to pets, store pet information, manage pet information, and store stroll courses more conveniently with the developed system.

Real Time Framework Design based on Android Platform (안드로이드 플랫폼을 기반으로 한 실시간 프레임워크 설계)

  • Kang, Ki-Woong;Han, Kyu-Cheol;Jang, Seung-Jin;Lim, Se-Jung;Kim, Kwang-Jun;Jang, Chang-Soo
    • The Journal of the Korea institute of electronic communication sciences
    • /
    • v.9 no.11
    • /
    • pp.1255-1266
    • /
    • 2014
  • This thesis presents MPU module, Base board and sensor module which are efficient industrial control through design and manufacture as developing S5PV210 CPU of SAMSUNG used by ARM Cortex-A8 based on Android which is Open mobile platform is installed to embedded system. Data for temperature and humidity which are received by sensor module proved the suitability and validity for the real time framework design as implementing application program employed the smart phone App with hybrid application based on DB of web server.

Implementation of AI-based Disaster Safety Communication Network protect (AI 기반 재난안전통신망 프로텍트 구현)

  • Bae, Se-jin;Ahn, Jung-hyun;Rhee, Jung-soo;Park, Jung-soo;Baik, Nam-kyun
    • Proceedings of the Korean Institute of Information and Commucation Sciences Conference
    • /
    • 2021.05a
    • /
    • pp.655-656
    • /
    • 2021
  • April 2021, Disaster Safety Communication Network services have been launched, but security functions are weak at the beginning of the service. The current security method for Android-based APP is using Google Protect's technology to detect malware. Malware is difficult to detect directly because there are various types, so by applying malware detection technology that combines AI and Google Protect technology to Disaster Safety Communication Networks, research on how to implement 'AI-based Disaster Satety Communication Network Protect'.

  • PDF