H-binder: A hardened binder framework on android systems

Dong Shen; Zhangkai Zhang; Xuhua Ding; Zhoujun Li; Robert Deng

doi:10.1007/978-3-319-59608-2_2

H-binder: A hardened binder framework on android systems

Dong Shen
, Zhangkai Zhang
, Xuhua Ding
, Zhoujun Li^*
, Robert Deng

^*此作品的通讯作者

计算机学院

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

3 引用（Scopus）

摘要

The Binder framework is at the core of Android systems due to its fundamental role for interprocess communications. Applications use the Binder to perform high level tasks such as accessing location information. The importance of the Binder makes it an attractive target for attackers. Rootkits on Android platforms can arbitrarily access any Binder transaction data and therefore have system-wide security impact. In this paper, we propose H-Binder to secure the Binder IPC channel between two applications. It runs transparently with Android and COTS applications without making changes on their binaries. In this work, we design a bare-metal ARM hypervisor with a tiny code base at runtime. The hypervisor interposes on the main steps of a Binder transaction by leveraging ARM hardware virtualization techniques. It protects secrecy and integrity of the Binder transaction data. We have implemented a prototype of the H-Binder hypervisor and tested its performance. The experiment results show that H-Binder incurs an insignificant overhead to the applications.

源语言	英语
主期刊名	Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings
编辑	Robert Deng, Vinod Yegneswaran, Jian Weng, Kui Ren
出版商	Springer Verlag
页	24-43
页数	20
ISBN（印刷版）	9783319596075
DOI	https://doi.org/10.1007/978-3-319-59608-2_2
出版状态	已出版 - 2017
活动	12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016 - Guangzhou, 中国期限: 10 10月 2016 → 12 10月 2016

出版系列

姓名	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
卷	198 LNICST
ISSN（印刷版）	1867-8211

会议

会议	12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016
国家/地区	中国
市	Guangzhou
时期	10/10/16 → 12/10/16

访问文件

10.1007/978-3-319-59608-2_2

其它文件与链接

链接到 Scopus 的出版物

引用此

Shen, D., Zhang, Z., Ding, X., Li, Z., & Deng, R. (2017). H-binder: A hardened binder framework on android systems. 在 R. Deng, V. Yegneswaran, J. Weng, & K. Ren (编辑), Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings (页码 24-43). (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; 卷 198 LNICST). Springer Verlag. https://doi.org/10.1007/978-3-319-59608-2_2

Shen, Dong ; Zhang, Zhangkai ; Ding, Xuhua 等. / H-binder : A hardened binder framework on android systems. Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings. 编辑 / Robert Deng ; Vinod Yegneswaran ; Jian Weng ; Kui Ren. Springer Verlag, 2017. 页码 24-43 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST).

@inproceedings{12f2dc740fca485b8f311904eaf3fb4a,

title = "H-binder: A hardened binder framework on android systems",

abstract = "The Binder framework is at the core of Android systems due to its fundamental role for interprocess communications. Applications use the Binder to perform high level tasks such as accessing location information. The importance of the Binder makes it an attractive target for attackers. Rootkits on Android platforms can arbitrarily access any Binder transaction data and therefore have system-wide security impact. In this paper, we propose H-Binder to secure the Binder IPC channel between two applications. It runs transparently with Android and COTS applications without making changes on their binaries. In this work, we design a bare-metal ARM hypervisor with a tiny code base at runtime. The hypervisor interposes on the main steps of a Binder transaction by leveraging ARM hardware virtualization techniques. It protects secrecy and integrity of the Binder transaction data. We have implemented a prototype of the H-Binder hypervisor and tested its performance. The experiment results show that H-Binder incurs an insignificant overhead to the applications.",

keywords = "ARM, Android, Binder, Hypervisor, System security, Virtualization",

author = "Dong Shen and Zhangkai Zhang and Xuhua Ding and Zhoujun Li and Robert Deng",

note = "Publisher Copyright: {\textcopyright} ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2017.; 12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016 ; Conference date: 10-10-2016 Through 12-10-2016",

year = "2017",

doi = "10.1007/978-3-319-59608-2\_2",

language = "英语",

isbn = "9783319596075",

series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",

publisher = "Springer Verlag",

pages = "24--43",

editor = "Robert Deng and Vinod Yegneswaran and Jian Weng and Kui Ren",

booktitle = "Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings",

address = "德国",

}

Shen, D, Zhang, Z, Ding, X, Li, Z & Deng, R 2017, H-binder: A hardened binder framework on android systems. 在 R Deng, V Yegneswaran, J Weng & K Ren (编辑), Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings. Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, 卷 198 LNICST, Springer Verlag, 页码 24-43, 12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016, Guangzhou, 中国, 10/10/16. https://doi.org/10.1007/978-3-319-59608-2_2

H-binder: A hardened binder framework on android systems. / Shen, Dong; Zhang, Zhangkai; Ding, Xuhua 等.
Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings. 编辑 / Robert Deng; Vinod Yegneswaran; Jian Weng; Kui Ren. Springer Verlag, 2017. 页码 24-43 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; 卷 198 LNICST).

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

TY - GEN

T1 - H-binder

T2 - 12th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2016

AU - Shen, Dong

AU - Zhang, Zhangkai

AU - Ding, Xuhua

AU - Li, Zhoujun

AU - Deng, Robert

N1 - Publisher Copyright: © ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2017.

PY - 2017

Y1 - 2017

N2 - The Binder framework is at the core of Android systems due to its fundamental role for interprocess communications. Applications use the Binder to perform high level tasks such as accessing location information. The importance of the Binder makes it an attractive target for attackers. Rootkits on Android platforms can arbitrarily access any Binder transaction data and therefore have system-wide security impact. In this paper, we propose H-Binder to secure the Binder IPC channel between two applications. It runs transparently with Android and COTS applications without making changes on their binaries. In this work, we design a bare-metal ARM hypervisor with a tiny code base at runtime. The hypervisor interposes on the main steps of a Binder transaction by leveraging ARM hardware virtualization techniques. It protects secrecy and integrity of the Binder transaction data. We have implemented a prototype of the H-Binder hypervisor and tested its performance. The experiment results show that H-Binder incurs an insignificant overhead to the applications.

AB - The Binder framework is at the core of Android systems due to its fundamental role for interprocess communications. Applications use the Binder to perform high level tasks such as accessing location information. The importance of the Binder makes it an attractive target for attackers. Rootkits on Android platforms can arbitrarily access any Binder transaction data and therefore have system-wide security impact. In this paper, we propose H-Binder to secure the Binder IPC channel between two applications. It runs transparently with Android and COTS applications without making changes on their binaries. In this work, we design a bare-metal ARM hypervisor with a tiny code base at runtime. The hypervisor interposes on the main steps of a Binder transaction by leveraging ARM hardware virtualization techniques. It protects secrecy and integrity of the Binder transaction data. We have implemented a prototype of the H-Binder hypervisor and tested its performance. The experiment results show that H-Binder incurs an insignificant overhead to the applications.

KW - ARM

KW - Android

KW - Binder

KW - Hypervisor

KW - System security

KW - Virtualization

UR - https://www.scopus.com/pages/publications/85021750303

U2 - 10.1007/978-3-319-59608-2_2

DO - 10.1007/978-3-319-59608-2_2

M3 - 会议稿件

AN - SCOPUS:85021750303

SN - 9783319596075

T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST

SP - 24

EP - 43

BT - Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings

A2 - Deng, Robert

A2 - Yegneswaran, Vinod

A2 - Weng, Jian

A2 - Ren, Kui

PB - Springer Verlag

Y2 - 10 October 2016 through 12 October 2016

ER -

Shen D, Zhang Z, Ding X, Li Z, Deng R. H-binder: A hardened binder framework on android systems. 在 Deng R, Yegneswaran V, Weng J, Ren K, 编辑, Security and Privacy in Communication Networks -12th International Conference, SecureComm 2016, Proceedings. Springer Verlag. 2017. 页码 24-43. (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST). doi: 10.1007/978-3-319-59608-2_2

H-binder: A hardened binder framework on android systems

摘要

出版系列

会议

访问文件

其它文件与链接

指纹

引用此