Security Implications of Permission Models in Smart-Home Application Frameworks

Earlence Fernandes; Amir Rahmati; Jaeyeon Jung; Atul Prakash

首页> 外文期刊>IEEE security & privacy >Security Implications of Permission Models in Smart-Home Application Frameworks

【24h】

Security Implications of Permission Models in Smart-Home Application Frameworks

机译：智能家居应用程序框架中权限模型的安全含义

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Several competing smart-home programming frameworks that support third-party app development have emerged. Such frameworks' permission models represent the dividing line between malicious apps that compromise user security and useful apps that provide user benefits. The authors survey the permission models of four popular frameworks: IoTivity, HomeKit, AllJoyn, and SmartThings, then report on their recent deep empirical analysis of SmartThings. A key finding is that SmartThings apps are automatically overprivileged, which can leave users vulnerable to various remote attacks.

机译：已经出现了一些支持第三方应用程序开发的竞争性智能家居编程框架。此类框架的权限模型代表了危害用户安全的恶意应用与提供用户利益的有用应用之间的分界线。作者调查了四个流行的框架（IoTivity，HomeKit，AllJoyn和SmartThings）的许可模型，然后报告了他们最近对SmartThings进行的深入实证分析。一个关键发现是SmartThings应用程序自动享有特权，这会使用户容易受到各种远程攻击。

著录项

来源
《IEEE security & privacy》 |2017年第2期|24-30|共7页
作者
Earlence Fernandes; Amir Rahmati; Jaeyeon Jung; Atul Prakash;
展开▼
作者单位

University of Michigan;

University of Michigan;

Samsung;

University of Michigan;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Analytical models; Access control; Intelligent systems; Object recognition; Smart homes; Privacy; Computer security; Sensors; Consumer electronics;

机译：分析模型;访问控制;智能系统;对象识别;智能家居;隐私;计算机安全;传感器;消费电子;

相似文献

外文文献
中文文献
专利

1. Cybersecurity for Android Applications: Permissions in Android 5 and 6 [J] . Moore Scott R., Ge Huangyi, Li Ninghui, International journal of human-computer interaction . 2019,第6a10期

机译：Android应用程序的网络安全：Android 5和6中的权限
2. A Novel Security Framework for Managing Android Permissions Using Blockchain Technology [J] . Abdellah Ouaguid, Noreddine Abghour, Mohammed Ouzzif International journal of cloud applications and computing . 2018,第1期

机译：使用区块链技术管理Android权限的新型安全框架
3. Using variability modelling and design patterns for self-adaptive system engineering: application to smart-home [J] . Mohamed Lamine Berkane, Lionel Seinturier, Mahmoud Boufaida International Journal of Web Engineering and Technology . 2015,第1期

机译：使用可变性建模和设计模式进行自适应系统工程：应用于智能家居
4. Security-Oriented Framework for Internet of Things Smart-Home Applications [C] . Bogdan-Cosmin Chifor, Stefan-Ciprian Arseni, Ioana Matei, International Conference on Control Systems and Computer Science . 2019

机译：面向安全的物联网智能家居应用框架
5. Android Security: Permission Request Analysis Using Selforganizing Maps in Android Malware Applications. [D] . Ayed, Ahmed Ben. 2017

机译：Android安全性：使用Android恶意软件应用程序中的自组织映射进行权限请求分析。
6. SenseCrypt: A Security Framework for Mobile Crowd Sensing Applications [O] . Nsikak Pius Owoh, Manmeet Mahinderjit Singh 2020

机译：SenseCrypt：用于移动人群感应应用程序的安全框架
7. A Methodology for Empirical Analysis of Permission-Based Security Models and its Application to Android [O] . David Barrera, P. C. Van Oorschot, H. Güne¸s Kayacık, 2010

机译：基于权限的安全模型实证分析方法及其在android中的应用

Security Implications of Permission Models in Smart-Home Application Frameworks

摘要

著录项

相似文献

相关主题

期刊订阅