Presentation is loading. Please wait.

Presentation is loading. Please wait.

Smartphone Security Evaluation

Published byDelphia Long Modified over 6 years ago

Similar presentations

Presentation on theme: "Smartphone Security Evaluation"— Presentation transcript:

1 Smartphone Security Evaluation
Created by : Tulika Sengupta & Haril Satra

2 Introduction Small size, mobility, connectivity capabilities, and multi-purpose use are some of the reasons for the vast pervasiveness of smartphones. Smartphone sales and annual downloads for applications developed for smartphones and distributed from application repositories are increasing every year. Popular Social networks are being accessed on smartphones through native applications, instead of the usual web browser interface. Smartphones contain a vast amount of the user’s data which are augmented with smartphone sensor data and data created by daily use, thus posing a serious privacy threat vector. This data source is invaluable to attackers trying to harvest them to increase their revenues.

3 Smartphone Security Model
Two contradicting goals: Provide mechanisms to protect the users from attack. This is approached by each smartphone platform under a non unified and standardized approach such that it’s effectiveness is controversial. Attract third party developers. For this the smartphone platforms provide developers with development friendly environments which includes extensive documentation, programming libraries and emulators. This development friendliness can be used to create applications which can compromise the security and piracy of smartphone users.

4 Smartphone Platforms We will look into background information about the following current smartphone operating systems: Android OS Blackberry OS Symbian OS Apple iOS Windows Mobile OS

5 Android OS Linux based open source operating system developed and maintained by Google. Provides a free and publicly available Software Development Kit (SDK) that consists of tools, documentation and emulators necessary for the development of new applications in Java. Manifest File Core element of Android security model. Bundled into the Android installation package file. Follows XML structure Permissions which control the way the application interacts with the system and with the other applications are defined in this file.

6 Android Security Model
By default, every application runs in a sandboxed environment. Every application requests authorization for permissions at installation time and requires user’s approval. No checks are made during the applications execution. The installation package file of every Android application has to be digitally signed by its developer.

7 Android Security Model
Installation package file of every Android application has to be digitally signed by its developer. The security mode then maps the signature of the developer with a unique ID of the application package and enforces signature level permission authorization. However, it is not obligatory that the developer’s certificate is signed by a trusted certificate authority. This leads to poor source origin and integrity protection, thus sometimes preserving the anonymity of a potential attacker.

8 Android Application Distribution
There are two ways Official Android application repository called the Google Play Store formally known as the Android Market. Outside the official repository. There no restrictions in the installation of applications originating outside the repository. Google developed technologies to remove applications from the official repository in case they pose a threat to the Android platform. However these technologies contained flaws and attackers were able to disguise an app from being malicious.

9 Blackberry OS It is an OS maintained by Research In Motion Inc. (RIM).
Documentation about the OS is not provided. However, Blackberry SDK, related documentation, tools, API and emulators are provided.

10 Blackberry Security Model
The platform security model enforces restrictions to third party applications trying to access protected APIs of the OS. It does this by demanding the signing of the application with a cryptographic key provided by RIM. A developer needs to pay a small amount in order to acquire a valid RIM signing key pair. This process may help with source origin but does not offer any assurance about the validity and the security level of the third party application.

11 Blackberry Application Distribution
The official application repository for BlackBerry smartphones is the App World. There also exist some unofficial repositories like CrackBerry. A vendor account is required to distribute the application in the official repository. Developers incur a registration cost of $200 for the aforementioned account creation, which allows them to submit 10 applications. Blackberry does not examine the application code for malicious behavior before publishing the application in the repository. Blackberry does not operate a remote application removal mechanism.

12 Symbian OS It is an operating system maintained by Nokia.
Symbian provides multiple free and publicly available SDKs. The SDK includes the tools, documentation and emulators. Application development is done in C++.

13 Symbian Security Model - Capabilites
The cornerstone in Symbian’s security model is the use of capabilities (Nokia, 2011a) for defining restrictions to sensitive platform APIs. These capabilities are grouped in the following categories: basic, extended, manufacturer. (a). Basic: Access to basic functionalities where the user is prompted for its authorization during installation. (b). Extended: Use of sensitive API that is only granted through the Symbian Signed process. (c). Manufacturer: Controls application access to the most sensitive API in the platform. These capabilities are only granted by a Device Manufacturer.

14 Symbian Security Model
For each application installation, signing the application’s package file (.sis file) is required. This ensures that the application is not using API apart from the one corresponding to the applications signing level. If the application only uses basic capabilities the developer can self sign it.

15 Symbian Application Distribution
The applications are not required to reside in an application repository in order to be installed to Symbian devices. Nonetheless, Nokia maintains an official application repository, the OVI store which is now replaced by the Opera Store.

16 iOS Proprietary operating system maintained by Apple.
This operating system is used only in Apple smartphones and tablets (i.e. iPhones, iPads). After registration to the company’s Dev Center, Apple provides documentation, tools and the necessary API for application development in Objective C.

17 iOS Security Model The security model of iOS only permits the installation of applications that have been signed by Apple. Before being signed, an application is tested for its functionality consistency and for malicious behavior. The testing process and criteria applied by Apple are not publicly available.

18 iOS Application Distribution
The official repository of iOS applications is the App Store. The distribution of applications in the repository costs $99 per year. The iOS protection code can be altered and bypassed and the user can install applications that are not officially signed by Apple. Normally the applications are installed on the device with (a). App Store or (b). iTunes. Once the application is installed to the device, the user neither controls nor is prompted when an application accesses some sensitive resources.

19 Windows Mobile Smartphone Operating system developed and maintained by Microsoft. For application development, Microsoft freely provides the required development toolkit which includes SDK, emulator, documentation etc. The supported implementation languages (e.g. C#, Visual C++) are compatible with the Compact .NET Framework.

20 Windows Mobile Security Model
The security model of Windows Mobile depends on the enabled policy of the device. The enabled policy on a Windows Mobile smartphone is either one-tier access or two-tier access. A device with one tier access policy enabled, only controls if one application runs on the device or not, without inspecting if the application is using sensitive API. (Privileged Mode) A device with two-tier access policy enabled, apart from controlling application execution, it also checks runtime permissions by controlling the APIs that the application uses. (Normal Mode)

21 Windows Mobile Security Model
The default security configurations of Windows Mobile, provides weak security protection as: It allows the execution of unsigned applications or signed applications with an unknown certificate. The user is prompted to authorize the execution of the application. The security model also permits Mobile Operators to make post-production changes to security settings configurations of the device.

22 Evaluation Criteria The proposed criteria for comparative evaluation concern the Development platform (Objective) Developer (Subjective)

23 Development Platform Criteria
Development Tools Availability {Yes, Partial, No} Development Friendliness {Yes, No} Installation Vectors {Multiple, Restricted} Application Portability {Yes, No} Application Testing {Yes, No} Application Removal Yes, No} Unofficial Repositories {Yes, No} Distribution Cost {Yes, No} API Restrictions {Yes, No} Application Signing {Yes, No}

24 Developer Criteria Developer’s Background {Education Level}
Development Time {Number}

25 Implementation of a Malware Attack
The attack scenario refers to a location tracking malicious application. The application collects the smartphone’s user GPS coordinates (i.e. her exact position) and sends them to the attacker. It is assumed that the malicious functionality is included in a free GPS navigation application. The application apart from getting the user’s location and presenting it using Google Maps, it also sends the location data to the attacker server.

26 Implementation of a Malware Attack

27 Android OS Analysis - Successful

28 BlackBerry OS Analysis - Successful

29 Symbian OS Analysis - Unsuccessful

30 Apple iOS Analysis - Successful

31 Windows Mobile Analysis - Successful

32 Case Study Overview The proof of concept exercise demonstrated that, it is possible to easily implement the attack on all smartphone platforms, except for Symbian and Apple iOS. The reasons of the implementation failure on Symbian were not security related. Application testing for malicious behavior cannot be avoided only on Apple’s iOS. Furthermore, iOS was the only platform having strict installation requirements. The user is fully responsible for authorizing application execution on most of the platforms and this is identified as a major weakness. According to the case study findings, a non proficient attacker would not choose to use the iOS as a privacy and security attack vector. Android and Windows Mobile were found to provide the least protection against our attack scenario.

33 Conclusions The sufficiency of the adopted security mechanisms seems to be controversial. This proof of concept study has proven that under circumstances all smartphone platforms would not stop average developers from using them as privacy attack vectors, harvesting data from the device without the user’s knowledge and consent.

34 Potential Solutions A silver bullet solution against similar attack scenarios is not available. Some of the solutions that can be used to avoid a potential malware outbreak in smartphones are: user awareness, i.e. informing user about security and privacy risks in smartphone platforms. providing secure application distribution in smartphone platforms.

35 References A. Mylonas, S. Dritsas, B. Tsoumas and D. Gritzalis, "Smartphone security evaluation The malware attack case," Proceedings of the International Conference on Security and Cryptography, Seville, Spain, 2011, pp

Download ppt "Smartphone Security Evaluation"

Similar presentations

New Security Issues Raised by Open Cards Pierre GirardJean-Louis Lanet GERMPLUS R&D.

New Security Issues Raised by Open Cards Pierre GirardJean-Louis Lanet GERMPLUS R&D.
Syracuse University, New York, USA

Syracuse University, New York, USA
Intro to Android and iOS CS-328 Dick Steflik. The Players Android – Open source mobile OS developed ny the Open Handset Alliance led by Google. Based.

Intro to Android and iOS CS-328 Dick Steflik. The Players Android – Open source mobile OS developed ny the Open Handset Alliance led by Google. Based.
Lee Hang Lam Wong Kwun Yam Chan Sin Ping Wong Cecilia Kei Ka Mobile Phone OS.

Lee Hang Lam Wong Kwun Yam Chan Sin Ping Wong Cecilia Kei Ka Mobile Phone OS.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson Presented By: Rajat Khandelwal – 2009CS10209 Parikshit.

Aurasium: Practical Policy Enforcement for Android Applications R. Xu, H. Saidi and R. Anderson Presented By: Rajat Khandelwal – 2009CS10209 Parikshit.
Lab4 Part2 Lau Ting Nga Virginia Tsang Pui Yu Wong Sin Man.

Lab4 Part2 Lau Ting Nga Virginia Tsang Pui Yu Wong Sin Man.
System Center Configuration Manager Push Software By, Teresa Behm.

System Center Configuration Manager Push Software By, Teresa Behm.
Chung Man Ho Willims Chow Man Kei Gary Kwok Pak Wai Lion.

Chung Man Ho Willims Chow Man Kei Gary Kwok Pak Wai Lion.
Mobile Mobile OS and Application Team: Kwok Tak Chi Law Tsz Hin So Ting Wai.

Mobile Mobile OS and Application Team: Kwok Tak Chi Law Tsz Hin So Ting Wai.
1 Extensible Security Architectures for Java Authors: Dan S.Wallch, Dirk Balfanz Presented by Moonjoo Kim.

1 Extensible Security Architectures for Java Authors: Dan S.Wallch, Dirk Balfanz Presented by Moonjoo Kim.
Security in By: Abdulelah Algosaibi Supervised by: Prof. Michael Rothstein Summer II 2010: CS 6/79995 Operating System Security.

Security in By: Abdulelah Algosaibi Supervised by: Prof. Michael Rothstein Summer II 2010: CS 6/79995 Operating System Security.
Hidden Apps Carrier IQ and Privacy in Mobile Devices.

Hidden Apps Carrier IQ and Privacy in Mobile Devices.
2. Setting Up Your Android Development Environment.

2. Setting Up Your Android Development Environment.
ANDROID PROGRAMMING MODULE 1 – GETTING STARTED

ANDROID PROGRAMMING MODULE 1 – GETTING STARTED
SMARTPHONE OPERATION SYSTEM MARKET IN U.S. Ryan (Jang-Hoon) Doo ISM 158.

SMARTPHONE OPERATION SYSTEM MARKET IN U.S. Ryan (Jang-Hoon) Doo ISM 158.
Native vs hybrid vs web mobile Application

Native vs hybrid vs web mobile Application
Android Security Enforcement and Refinement. Android Applications --- Example Example of location-sensitive social networking application for mobile phones.

Android Security Enforcement and Refinement. Android Applications --- Example Example of location-sensitive social networking application for mobile phones.
Presentation By Deepak Katta

Presentation By Deepak Katta
Microsoft ® Official Course Module 9 Configuring Applications.

Microsoft ® Official Course Module 9 Configuring Applications.

Similar presentations

Ads by Google