Title | ||
---|---|---|
Delivering secure applications on commercial mobile devices: the case for bare metal hypervisors |
Abstract | ||
---|---|---|
A problem faced by security sensitive mobile applications is assurance of correct execution on a commercial device. Prior approaches typically address this problem by assuming a trusted operating system (OS) as part of their trusted computing base (TCB). However, the vast amount of privileged code running in a typical mobile OS makes the presence of system vulnerabilities inevitable. As an alternative, we recommend the use of a bare metal hypervisor, which typically consists of orders of magnitude fewer lines of code than a full OS. This makes formal verification practical. Thus bare metal hypervisors are much more suitable for the basis of a TCB. We shall present a bare metal hypervisor-based architecture that enables trusted apps on mobile devices to be protected despite: OS compromise, malicious applications, and the inability of the end user to distinguish between trusted and untrusted apps. |
Year | DOI | Venue |
---|---|---|
2011 | 10.1145/2046614.2046622 | SPSM@CCS |
Keywords | Field | DocType |
privileged code,bare metal,typical mobile os,bare metal hypervisor,untrusted apps,mobile device,full os,os compromise,secure application,commercial mobile device,security sensitive mobile application,bare metal hypervisors,lines of code,operating system,formal verification,trusted computing base | Trusted operating system,End user,Computer science,Computer security,Hypervisor,Mobile device,Trusted computing base,Operating system,Formal verification,Source lines of code,Embedded system | Conference |
Citations | PageRank | References |
12 | 1.06 | 15 |
Authors | ||
4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Kevin Gudeth | 1 | 12 | 1.06 |
Matthew Pirretti | 2 | 213 | 16.14 |
Katrin Hoeper | 3 | 44 | 6.43 |
Ron Buskey | 4 | 12 | 1.06 |