A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit the original URL.
The file type is application/pdf
.
Checking Interaction-Based Declassification Policies for Android Using Symbolic Execution
[article]
2015
arXiv
pre-print
Mobile apps can access a wide variety of secure information, such as contacts and location. However, current mobile platforms include only coarse access control mechanisms to protect such data. In this paper, we introduce interaction-based declassification policies, in which the user's interactions with the app constrain the release of sensitive information. Our policies are defined extensionally, so as to be independent of the app's implementation, based on sequences of security-relevant
arXiv:1504.03711v2
fatcat:7pvhmytqgfgtzls75juzpl6lky