πBox: a platform for privacy-preserving apps
作者: Vitaly Shmatikov , Mike Dahlin , Edmund L. Wong , Deepak Goel , Sangmin Lee
DOI:
关键词:
摘要: We present πBox, a new application platform that prevents apps from misusing information about their users. To strike useful balance between users' privacy and apps' functional needs, πBox shifts much of the responsibility for protecting app its users to itself. achieve this, deploys (1) sandbox spans user's device cloud, (2) specialized storage communication channels enable common functionalities, (3) an adaptation recent theoretical algorithms differential under continual observation.We describe prototype implementation show how it enables wide range with minimal performance overhead without sacrificing user privacy.
参考文章(42)
Adrienne Porter Felt, Elizabeth Ha, Serge Egelman, Ariel Haney, Erika Chin, David Wagner, Android permissions: user attention, comprehension, and behavior symposium on usable privacy and security. pp. 3- ,(2012) , 10.1145/2335356.2335360
Fengzhe Zhang, Jin Chen, Haibo Chen, Binyu Zang, CloudVisor Proceedings of the Twenty-Third ACM Symposium on Operating Systems Principles - SOSP '11. pp. 203- 216 ,(2011) , 10.1145/2043556.2043576
Niall Monro, Cells Proceedings of the Twenty-Third ACM Symposium on Operating Systems Principles - SOSP '11. pp. 173- 187 ,(2011) , 10.1145/2043556.2043574
Gilles Barthe, Boris Kopf, Information-Theoretic Bounds for Differentially Private Mechanisms ieee computer security foundations symposium. pp. 191- 204 ,(2011) , 10.1109/CSF.2011.20
Silas Boyd-Wickizer, David Mazières, Nickolai Zeldovich, Eddie Kohler, Making information flow explicit in HiStar operating systems design and implementation. pp. 263- 278 ,(2006) , 10.5555/1298455.1298481
Dorothy E. Denning, A lattice model of secure information flow Communications of the ACM. ,vol. 19, pp. 236- 243 ,(1976) , 10.1145/360051.360056
Butler W. Lampson, A note on the confinement problem Communications of the ACM. ,vol. 16, pp. 613- 615 ,(1973) , 10.1145/362375.362389
Irit Dinur, Kobbi Nissim, Revealing information while preserving privacy symposium on principles of database systems. pp. 202- 210 ,(2003) , 10.1145/773153.773173
Adrienne Porter Felt, Erika Chin, Steve Hanna, Dawn Song, David Wagner, Android permissions demystified Proceedings of the 18th ACM conference on Computer and communications security - CCS '11. pp. 627- 638 ,(2011) , 10.1145/2046707.2046779
Thomas Ristenpart, Eran Tromer, Hovav Shacham, Stefan Savage, Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds computer and communications security. pp. 199- 212 ,(2009) , 10.1145/1653662.1653687