H-binder: A hardened binder framework on android systems

Dong Shen; Zhangkai Zhang; Xuhua Ding; Zhoujun Li; Robert Deng

doi:10.1007/978-3-319-59608-2_2

H-binder: A hardened binder framework on android systems

Dong Shen
, Zhangkai Zhang
, Xuhua Ding
, Zhoujun Li^*
, Robert Deng

^*Corresponding author for this work

School of Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

3 Scopus citations

Abstract

The Binder framework is at the core of Android systems due to its fundamental role for interprocess communications. Applications use the Binder to perform high level tasks such as accessing location information. The importance of the Binder makes it an attractive target for attackers. Rootkits on Android platforms can arbitrarily access any Binder transaction data and therefore have system-wide security impact. In this paper, we propose H-Binder to secure the Binder IPC channel between two applications. It runs transparently with Android and COTS applications without making changes on their binaries. In this work, we design a bare-metal ARM hypervisor with a tiny code base at runtime. The hypervisor interposes on the main steps of a Binder transaction by leveraging ARM hardware virtualization techniques. It protects secrecy and integrity of the Binder transaction data. We have implemented a prototype of the H-Binder hypervisor and tested its performance. The experiment results show that H-Binder incurs an insignificant overhead to the applications.

Original language	English
Title of host publication	Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings
Editors	Robert Deng, Vinod Yegneswaran, Jian Weng, Kui Ren
Publisher	Springer Verlag
Pages	24-43
Number of pages	20
ISBN (Print)	9783319596075
DOIs	https://doi.org/10.1007/978-3-319-59608-2_2
State	Published - 2017
Event	12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016 - Guangzhou, China Duration: 10 Oct 2016 → 12 Oct 2016

Publication series

Name	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
Volume	198 LNICST
ISSN (Print)	1867-8211

Conference

Conference	12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016
Country/Territory	China
City	Guangzhou
Period	10/10/16 → 12/10/16

Keywords

ARM
Android
Binder
Hypervisor
System security
Virtualization

Access to Document

10.1007/978-3-319-59608-2_2

Cite this

Shen, D., Zhang, Z., Ding, X., Li, Z., & Deng, R. (2017). H-binder: A hardened binder framework on android systems. In R. Deng, V. Yegneswaran, J. Weng, & K. Ren (Eds.), Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings (pp. 24-43). (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 198 LNICST). Springer Verlag. https://doi.org/10.1007/978-3-319-59608-2_2

Shen, Dong ; Zhang, Zhangkai ; Ding, Xuhua et al. / H-binder : A hardened binder framework on android systems. Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings. editor / Robert Deng ; Vinod Yegneswaran ; Jian Weng ; Kui Ren. Springer Verlag, 2017. pp. 24-43 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST).

@inproceedings{12f2dc740fca485b8f311904eaf3fb4a,

title = "H-binder: A hardened binder framework on android systems",

abstract = "The Binder framework is at the core of Android systems due to its fundamental role for interprocess communications. Applications use the Binder to perform high level tasks such as accessing location information. The importance of the Binder makes it an attractive target for attackers. Rootkits on Android platforms can arbitrarily access any Binder transaction data and therefore have system-wide security impact. In this paper, we propose H-Binder to secure the Binder IPC channel between two applications. It runs transparently with Android and COTS applications without making changes on their binaries. In this work, we design a bare-metal ARM hypervisor with a tiny code base at runtime. The hypervisor interposes on the main steps of a Binder transaction by leveraging ARM hardware virtualization techniques. It protects secrecy and integrity of the Binder transaction data. We have implemented a prototype of the H-Binder hypervisor and tested its performance. The experiment results show that H-Binder incurs an insignificant overhead to the applications.",

keywords = "ARM, Android, Binder, Hypervisor, System security, Virtualization",

author = "Dong Shen and Zhangkai Zhang and Xuhua Ding and Zhoujun Li and Robert Deng",

note = "Publisher Copyright: {\textcopyright} ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2017.; 12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016 ; Conference date: 10-10-2016 Through 12-10-2016",

year = "2017",

doi = "10.1007/978-3-319-59608-2\_2",

language = "英语",

isbn = "9783319596075",

series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",

publisher = "Springer Verlag",

pages = "24--43",

editor = "Robert Deng and Vinod Yegneswaran and Jian Weng and Kui Ren",

booktitle = "Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings",

address = "德国",

}

Shen, D, Zhang, Z, Ding, X, Li, Z & Deng, R 2017, H-binder: A hardened binder framework on android systems. in R Deng, V Yegneswaran, J Weng & K Ren (eds), Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings. Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, vol. 198 LNICST, Springer Verlag, pp. 24-43, 12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016, Guangzhou, China, 10/10/16. https://doi.org/10.1007/978-3-319-59608-2_2

H-binder: A hardened binder framework on android systems. / Shen, Dong; Zhang, Zhangkai; Ding, Xuhua et al.
Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings. ed. / Robert Deng; Vinod Yegneswaran; Jian Weng; Kui Ren. Springer Verlag, 2017. p. 24-43 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 198 LNICST).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - H-binder

T2 - 12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016

AU - Shen, Dong

AU - Zhang, Zhangkai

AU - Ding, Xuhua

AU - Li, Zhoujun

AU - Deng, Robert

N1 - Publisher Copyright: © ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2017.

PY - 2017

Y1 - 2017

N2 - The Binder framework is at the core of Android systems due to its fundamental role for interprocess communications. Applications use the Binder to perform high level tasks such as accessing location information. The importance of the Binder makes it an attractive target for attackers. Rootkits on Android platforms can arbitrarily access any Binder transaction data and therefore have system-wide security impact. In this paper, we propose H-Binder to secure the Binder IPC channel between two applications. It runs transparently with Android and COTS applications without making changes on their binaries. In this work, we design a bare-metal ARM hypervisor with a tiny code base at runtime. The hypervisor interposes on the main steps of a Binder transaction by leveraging ARM hardware virtualization techniques. It protects secrecy and integrity of the Binder transaction data. We have implemented a prototype of the H-Binder hypervisor and tested its performance. The experiment results show that H-Binder incurs an insignificant overhead to the applications.

AB - The Binder framework is at the core of Android systems due to its fundamental role for interprocess communications. Applications use the Binder to perform high level tasks such as accessing location information. The importance of the Binder makes it an attractive target for attackers. Rootkits on Android platforms can arbitrarily access any Binder transaction data and therefore have system-wide security impact. In this paper, we propose H-Binder to secure the Binder IPC channel between two applications. It runs transparently with Android and COTS applications without making changes on their binaries. In this work, we design a bare-metal ARM hypervisor with a tiny code base at runtime. The hypervisor interposes on the main steps of a Binder transaction by leveraging ARM hardware virtualization techniques. It protects secrecy and integrity of the Binder transaction data. We have implemented a prototype of the H-Binder hypervisor and tested its performance. The experiment results show that H-Binder incurs an insignificant overhead to the applications.

KW - ARM

KW - Android

KW - Binder

KW - Hypervisor

KW - System security

KW - Virtualization

UR - https://www.scopus.com/pages/publications/85021750303

U2 - 10.1007/978-3-319-59608-2_2

DO - 10.1007/978-3-319-59608-2_2

M3 - 会议稿件

AN - SCOPUS:85021750303

SN - 9783319596075

T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST

SP - 24

EP - 43

BT - Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings

A2 - Deng, Robert

A2 - Yegneswaran, Vinod

A2 - Weng, Jian

A2 - Ren, Kui

PB - Springer Verlag

Y2 - 10 October 2016 through 12 October 2016

ER -

Shen D, Zhang Z, Ding X, Li Z, Deng R. H-binder: A hardened binder framework on android systems. In Deng R, Yegneswaran V, Weng J, Ren K, editors, Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings. Springer Verlag. 2017. p. 24-43. (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST). doi: 10.1007/978-3-319-59608-2_2

H-binder: A hardened binder framework on android systems

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this