loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Madalina G. Ciobanu 1 ; Fausto Fasano 1 ; Fabio Martinelli 2 ; Francesco Mercaldo 1 ; 2 and Antonella Santone 1

Affiliations: 1 Department of Biosciences and Territory, University of Molise, Pesche (IS), Italy ; 2 Istituto di Informatica e Telematica, Consiglio Nazionale delle Ricerche, Pisa, Italy

Keyword(s): Android, Security, Model Checking, Formal Methods, Privacy.

Abstract: Our mobile devices, if compared to their desktop counterpart, store a lot of sensitive and private information. Considering how easily permissions to sensitive and critical resources in the mobile environment are released, for example in Android, sometimes the developer unwittingly causes the leakage of sensitive information, endangering the privacy of users. Starting from these considerations, in this paper we propose a method aimed to automatically localise the code where there is the possibility of information leak. In a nutshell, we discuss a method aimed to check whether a sensitive information is processed in a way that violates specific rules. We employ code instrumentation to annotate sensitive data exploiting model checking technique. To show the effectiveness of the proposed method a case study is presented.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.140.185.147

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Ciobanu, M.; Fasano, F.; Martinelli, F.; Mercaldo, F. and Santone, A. (2020). Accidental Sensitive Data Leaks Prevention via Formal Verification. In Proceedings of the 6th International Conference on Information Systems Security and Privacy - ForSE; ISBN 978-989-758-399-5; ISSN 2184-4356, SciTePress, pages 825-834. DOI: 10.5220/0009380608250834

@conference{forse20,
author={Madalina G. Ciobanu. and Fausto Fasano. and Fabio Martinelli. and Francesco Mercaldo. and Antonella Santone.},
title={Accidental Sensitive Data Leaks Prevention via Formal Verification},
booktitle={Proceedings of the 6th International Conference on Information Systems Security and Privacy - ForSE},
year={2020},
pages={825-834},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009380608250834},
isbn={978-989-758-399-5},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 6th International Conference on Information Systems Security and Privacy - ForSE
TI - Accidental Sensitive Data Leaks Prevention via Formal Verification
SN - 978-989-758-399-5
IS - 2184-4356
AU - Ciobanu, M.
AU - Fasano, F.
AU - Martinelli, F.
AU - Mercaldo, F.
AU - Santone, A.
PY - 2020
SP - 825
EP - 834
DO - 10.5220/0009380608250834
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic