Publication

Ensuring Sustainable Safety in Fine-Grained Android Permission Model: Decidability through Finite Attribute Range Constraints

Citations
Google Scholar:
Lookup
Altmetric:
Type
Supervisor
Subject
Date
2025-04-01
Collections
Computer Science - Conference Papers
Show all metadata
Research Projects
Organizational Units
Journal Issue
Abstract
When Android was first introduced, it permitted unrestricted access to all installed applications, posing significant security risks. In one of our previous works, we proposed, implemented, and demonstrated a comprehensive model capable of restricting access to sensitive permissions based on granular constraints. This model was partially adopted by Android and is now a standard feature in all modern Android-based systems. However, the flexibility of this model introduces a critical issue: the safety of the model. A model’s safety determines whether the policies enforced by the model achieve the desired security goals. In this paper, we investigate the safety and undecidability problems associated with the model and demonstrate that, in its full form, the model is undecidable. To ensure creation and maintenance of sustainable security policies at both the individual and enterprise level, we propose the addition of a Finite Attribute Range Constraint, which renders the model both decidable and safe.
Department
Computer Science
Publisher
IEEE
Sponsor
Copyright
Book title
Journal title
Open Access
https://repository.effatuniversity.edu.sa/handle/20.500.14131/2131
DOI
https://doi.org/10.1109/LT64002.2025.10940824
Embedded videos