Kernel-Level Interception and Applications on Mobile Devices

作者: Ralf Hund , Michael Becher

DOI:

关键词: Sandbox (computer security)Reference monitorDistributed computingComputer scienceReal-time computingSecurity policyEmbedded operating systemMobile deviceMalware analysisWindows CESystem call

摘要: The techniques of kernel-level system call interception are well known today for many different operating systems. This work starts with transferring these technique to the Windows CE type Afterwards, two current problems solved. first solution uses dynamic malware analysis a sandbox approach, extending previous solutions in terms effectiveness. second enhances expressiveness security policies by implementing concept reference monitor on level. based devices now enabled enforce sophisticated without need change underlying system.

参考文章(12)
Felix C. Freiling, Michael Becher, Towards Dynamic Malware Analysis to Increase Mobile Device Security Sicherheit. pp. 423- 433 ,(2008)
John Murray, Inside Microsoft Windows CE ,(1998)
Mikko Hypponen, Malware Goes Mobile Scientific American. ,vol. 295, pp. 70- 77 ,(2006) , 10.1038/SCIENTIFICAMERICAN1106-70
Sampo Töyssy, Marko Helenius, About malicious software in smartphones Journal in Computer Virology. ,vol. 2, pp. 109- 119 ,(2006) , 10.1007/S11416-006-0022-0
Lloyd Bridges, Malware: The changing face of malware Network Security archive. ,vol. 2008, pp. 17- 20 ,(2008) , 10.1016/S1353-4858(08)70010-2
James W. Mickens, Brian D. Noble, Modeling epidemic spreading in mobile environments Proceedings of the 4th ACM workshop on Wireless security - WiSe '05. pp. 77- 86 ,(2005) , 10.1145/1080793.1080806
Carsten Willems, Thorsten Holz, Felix Freiling, Toward Automated Dynamic Malware Analysis Using CWSandbox ieee symposium on security and privacy. ,vol. 5, pp. 32- 39 ,(2007) , 10.1109/MSP.2007.45
Michael Becher, Felix C. Freiling, Boris Leider, On the Effort to Create Smartphone Worms in Windows Mobile information assurance and security. pp. 199- 206 ,(2007) , 10.1109/IAW.2007.381933
Ulrich Bayer, Andreas Moser, Christopher Kruegel, Engin Kirda, Dynamic Analysis of Malicious Code Journal in Computer Virology. ,vol. 2, pp. 67- 77 ,(2006) , 10.1007/S11416-006-0012-2