DroidCap: OS Support for Capability-based Permissions in Android

Dawoud, Abdallah and Bugiel, Sven
(2019) DroidCap: OS Support for Capability-based Permissions in Android.
In: NDSS Symposium 2019.
Conference: NDSS Network and Distributed System Security Symposium

[img]
Preview
 Text
ndss2019_01A-3_Dawoud_paper.pdf
Download (514kB) | Preview

Abstract

We present DroidCap, a retrofitting of Android’s central Binder IPC mechanism to change the way how permissions are being represented and managed in the system. In DroidCap, permissions are per-process Binder object capabilities. DroidCap's design removes Android’s UID-based ambient authority and allows the delegation of capabilities between processes to create least-privileged protection domains efficiently. With DroidCap, we show that object capabilities as underlying access control model integrates naturally and backward-compatible into Android’s stock permission model and application management. Thus, our Binder capabilities provide app developers with a new path to gradually adopting app compartmentalization, which we showcase at two favorite examples from the literature, privilege separated advertisement libraries and least privileged app components.

Item Type: Conference or Workshop Item (A Paper) (Paper)
Divisions: Sven Bugiel (Trusted Systems Group, TSG)
Conference: NDSS Network and Distributed System Security Symposium
Depositing User: Sven Bugiel
Date Deposited: 15 Mar 2019 10:24
Last Modified: 18 Jul 2019 12:11
Primary Research Area: NRA4: Secure Mobile and Autonomous Systems
URI: https://publications.cispa.saarland/id/eprint/2818

Actions

Actions (login required)

View Item View Item
CISPA is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.