Idea: Callee-Site Rewriting of Sealed System Libraries

Capítulo de livro Revisado por pares

Idea: Callee-Site Rewriting of Sealed System Libraries

2013; Springer Science+Business Media; Linguagem: Inglês

10.1007/978-3-642-36563-8_3

ISSN

1611-3349

Autores

Philipp von Styp-Rekowsky, Sebastian Gerling, Michael Backes, Christian Hammer,

Tópico(s)

Software Engineering Research

Resumo

Inline reference monitoring instruments programs in order to enforce a security policy at runtime. This technique has become an essential tool to mitigate inherent security shortcomings of mobile platforms like Android. Unfortunately, rewriting all calls to security-relevant methods requires significant space and time, in particular if this process is performed on the phone. This work proposes a novel approach to inline reference monitoring that abstains from caller-site instrumentation even in the case where the monitored method is part of a sealed library. To that end we divert the control flow towards the security monitor by modifying references to security-relevant methods in the Dalvik Virtual Machine's internal bytecode representation. This method is similar in spirit to modifying function pointers and effectively allows callee-site rewriting. Our initial empirical evaluation demonstrates that this approach incurs minimal runtime overhead.

Ver no editor

Altmetric

PlumX

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

Idea: Callee-Site Rewriting of Sealed System Libraries