Modeling and Analyzing the Android Permission Framework using High Level Petri Nets

被引:2
|
作者
He, Xudong [1 ]
机构
[1] Florida Int Univ, Sch Comp & Informat Sci, Miami, FL 33199 USA
来源
2017 IEEE INTERNATIONAL CONFERENCE ON SOFTWARE QUALITY, RELIABILITY AND SECURITY (QRS) | 2017年
关键词
Android permission; security; formal methods; high level Petri nets; modeling; verification and validation;
D O I
10.1109/QRS.2017.34
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
Android permission framework is a part of Android OS to enforce secure cross application communication. However the android permission framework is very complex, and its descriptions are scattered in dozens of webpages. It is very difficult to understand the relationships among multiple permission levels and their potential vulnerabilities. This paper presents a formal model of the Android permission framework using high level Petri nets. The model precisely defines the complex relationships among different levels of permissions. The model is constructed incrementally and thus is easily adaptable to future changes. The model building process is supported by our tool environment PIPE+, which further provides several analysis techniques. Simulation results for several scenarios that obey and violate the permission requirements are discussed.
引用
收藏
页码:232 / 239
页数:8
相关论文
共 50 条
  • [21] Modular modeling using Petri nets
    Wang, LM
    Xie, XL
    IEEE TRANSACTIONS ON ROBOTICS AND AUTOMATION, 1996, 12 (05): : 800 - 809
  • [22] Modeling and Analyzing Power Management Policies in Server Farms Using Stochastic Petri Nets
    Tian, Yuan
    Lin, Chuang
    Yao, Min
    2012 THIRD INTERNATIONAL CONFERENCE ON FUTURE ENERGY SYSTEMS: WHERE ENERGY, COMPUTING AND COMMUNICATION MEET (E-ENERGY), 2012,
  • [23] Modeling Petri Nets Using Alloy
    Robles, Jonathan A.
    Solano, Geoffrey A.
    TENCON 2012 - 2012 IEEE REGION 10 CONFERENCE: SUSTAINABLE DEVELOPMENT THROUGH HUMANITARIAN TECHNOLOGY, 2012,
  • [24] Hybrid Petri Nets a Framework for Hybrid Systems Modeling
    Drighiciu, Mircea Adrian
    2017 INTERNATIONAL CONFERENCE ON ELECTROMECHANICAL AND POWER SYSTEMS (SIELMEN), 2017, : 20 - 25
  • [25] RELATIONAL ALGEBRAIC FRAMEWORK FOR THE MODELING AND ANALYSIS OF PETRI NETS
    KIM, YC
    KIM, TG
    INFORMATION AND SOFTWARE TECHNOLOGY, 1995, 37 (10) : 563 - 571
  • [26] Modeling Multicasting in Communication Spaces by Reconfigurable High-level Petri Nets
    Ermel, Claudia
    Modica, Tony
    Biermann, Enrico
    Ehrig, Hartmut
    Hoffmann, Kathrin
    2009 IEEE SYMPOSIUM ON VISUAL LANGUAGES AND HUMAN-CENTRIC COMPUTING, PROCEEDINGS, 2009, : 47 - 50
  • [27] Using High-Level Petri Nets with Object-Orientation for Modeling Flexible Manufacturing Systems
    Brezovan, Marius
    Stanescu, Liana
    2017 18TH INTERNATIONAL CARPATHIAN CONTROL CONFERENCE (ICCC), 2017, : 477 - 482
  • [28] Modeling multi-valued genetic regulatory networks using high-level Petri Nets
    Comet, JP
    Klaudel, H
    Liauzu, S
    APPLICATIONS AND THEORY OF PETRI NETS 2005, PROCEEDINGS, 2005, 3536 : 208 - 227
  • [29] Modeling and verification of the SDL-specified communication protocols using high-level Petri nets
    V. A. Nepomniaschy
    V. S. Argirov
    D. M. Beloglazov
    A. V. Bystrov
    E. A. Chetvertakov
    T. G. Churina
    Programming and Computer Software, 2008, 34 : 330 - 340
  • [30] An automated tool for analyzing Petri nets using Spin
    Gannod, GC
    Gupta, S
    16TH ANNUAL INTERNATIONAL CONFERENCE ON AUTOMATED SOFTWARE ENGINEERING (ASE 2001), PROCEEDINGS, 2001, : 404 - 407
12345