Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Trusted virtual domains on OKL4: Secure information sharing on smartphones

: Davi, L.; Dmitrienko, A.; Kowalski, C.; Winandy, M.


Association for Computing Machinery -ACM-, Special Interest Group on Security, Audit and Control -SIGSAC-:
STC '11, Proceedings of the sixth ACM workshop on Scalable trusted computing : Co-located with 18th ACM Conference on Computer and Communications Security, CCS 2011, October 17-21 2011, Chicago, IL, USA
New York: ACM, 2011
ISBN: 978-1-4503-1001-7
Workshop on Scalable Trusted Computing (STC) <6, 2011, Chicago/Ill.>
Conference on Computer and Communications Security (CCS) <18, 2011, Chicago/Ill.>
Conference Paper
Fraunhofer SIT ()

The flexibility and computing power of modern smartphones to install and execute various applications allows for a rich user experience but also imposes several security concerns. Smartphones that are used both for private and corporate purposes do not separate the data and applications of different security domains, and users are usually too unskilled to deploy and configure extra security mechanisms. Hence, data leakage and unwanted information flow may occur. In this paper we present the design and implementation of the Trusted Virtual Domain (TVD) security architecture for smartphones. The TVD concept separates data and applications of different security domains and automates the security configuration on devices. In particular, we build our solution on top of the OKL4 microkernel, which provides the basic isolation properties, and extend it with a framework that realizes the TVD policy enforcement for Android operating systems. Our results show that the TVD securit y architecture can be built and used on modern smartphones, but there are also limitations that current security kernels like OKL4 have to address to improve the user experience.