Secure OSGi Platform against Service Injection

被引：0

作者：

Kim, Intae ^{[1
]}

Rim, Keewook ^{[2
]}

Lee, Junghyun ^{[1
]}

机构：

[1] Inha Univ, Dept Comp Sci & Informat Technol, 253 Yonghyun Dong, Inchon 402751, South Korea

[2] Sunmoon Univ, Dept Comp & Informat Sci, Asan, Chungnam 336-708, South Korea

来源：

SECURITY TECHNOLOGY, DISASTER RECOVERY AND BUSINESS CONTINUITY | 2010年 / 122卷

关键词：

Service injection; OSGi; Security;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

OSGi platform provides Java-based open standard programming interface that enables communication and control among devices at home. Service-oriented, component based software systems built using OSGi are extensible and adaptable but they entail new types of security concerns. Security concerns in OSGi platforms can be divided into two basic categories: vulnerabilities in Java cross-platform (or multi-platform) technology and vulnerabilities in the OSGi framework. This paper identifies a new OSGi platform-specific security vulnerability called a service injection attack and proposes two mechanisms of protection against this newly identified security risk in the OSGi framework.

引用

页码：74 / +

页数：3

共 50 条

[1] Supporting the OSGi Service Platform with Mobility and Service Distribution in Ubiquitous Home Environments
Ibrahim, Abdelgadir
Zhao, Liping
COMPUTER JOURNAL, 2009, 52 (02) : 210 - 239
[2] Priority-Oriented Architecture Service Management on OSGi Home-service Platform
Sheng-Tzong Cheng
Chih-Lun Chou
Gwo-Jiun Horng
Wireless Personal Communications, 2013, 71 : 611 - 628
[3] Priority-Oriented Architecture Service Management on OSGi Home-service Platform
Cheng, Sheng-Tzong
Chou, Chih-Lun
Horng, Gwo-Jiun
WIRELESS PERSONAL COMMUNICATIONS, 2013, 71 (01) : 611 - 628
[4] Distributed access control method based on RBAC in OSGi service platform
Cho, Eun-Ae
Moon, Chang-Joo
Baik, Doo-Kwon
DYNAMICS OF CONTINUOUS DISCRETE AND IMPULSIVE SYSTEMS-SERIES B-APPLICATIONS & ALGORITHMS, 2007, 14 : 1427 - 1431
[5] Bundle authentication and authorization using XML security in the OSGi service platform
Lim, HY
Kim, YG
Moon, CJ
Baik, DK
Fourth Annual ACIS International Conference on Computer and Information Science, Proceedings, 2005, : 502 - 507
[6] Pervasive Service Model: Using OWL-S to extend Service Model in OSGi Service Platform
Huang, Chi-Wei
Lee, Kuen-Min
JOURNAL OF INTERNET TECHNOLOGY, 2008, 9 (03): : 281 - 287
[7] A Graph-based Approach for Automatic Service Activation and Deactivation on the OSGi Platform
Lin, Chin-Yang
Lin, Cheng-Liang
Hou, Ting-Wei
IEEE TRANSACTIONS ON CONSUMER ELECTRONICS, 2009, 55 (03) : 1271 - 1279
[8] Formal verification of bundle authentication mechanism in OSGi service platform: BAN Logic
Kim, YG
Moon, CJ
Jeong, DW
Baik, DK
INTERNATIONAL JOURNAL OF SOFTWARE ENGINEERING AND KNOWLEDGE ENGINEERING, 2006, 16 (02) : 153 - 173
[9] Vehicle service middleware based on OSGi
Luo, Juan
Wu, Feng
Alkubati, Fahmi Ameen Abdo
PROCEEDINGS OF THE 3RD INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND SERVICE SYSTEM (CSSS), 2014, 109 : 714 - 717
[10] Enterprise Service Bus Based on OSGi
Huang, Wei
Sun, Bao-cheng
Xu, Ming-di
Zhao, Heng
Hu, Ying-song
PROCEEDINGS OF THE 22ND INTERNATIONAL CONFERENCE ON INDUSTRIAL ENGINEERING AND ENGINEERING MANAGEMENT: INNOVATION AND PRACTICE IN INDUSTRIAL ENGINEERING AND MANAGEMENT (VOL 2), 2016, : 233 - 245

← 1 2 3 4 5 →