SELint: An SEAndroid Policy Analysis Tool
Elena Reshetova, Filippo Bonazzi, N. Asokan
2017
Abstract
SEAndroid enforcement is now mandatory for Android devices. In order to provide the desired level of security for their products, Android OEMs need to be able to minimize their mistakes in writing SEAndroid policies. However, existing SEAndroid and SELinux tools are not very useful for this purpose. It has been shown that SEAndroid policies found in commercially available devices by multiple manufacturers contain mistakes and redundancies. In this paper we present a new tool, SELint, which aims to help OEMs to produce better SEAndroid policies. SELint is extensible and configurable to suit the needs of different OEMs. It is provided with a default configuration based on the AOSP SEAndroid policy, but can be customized by OEMs.
DownloadPaper Citation
in Harvard Style
Reshetova E., Bonazzi F. and Asokan N. (2017). SELint: An SEAndroid Policy Analysis Tool . In Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-209-7, pages 47-58. DOI: 10.5220/0006126600470058
in Bibtex Style
@conference{icissp17,
author={Elena Reshetova and Filippo Bonazzi and N. Asokan},
title={SELint: An SEAndroid Policy Analysis Tool},
booktitle={Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2017},
pages={47-58},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006126600470058},
isbn={978-989-758-209-7},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - SELint: An SEAndroid Policy Analysis Tool
SN - 978-989-758-209-7
AU - Reshetova E.
AU - Bonazzi F.
AU - Asokan N.
PY - 2017
SP - 47
EP - 58
DO - 10.5220/0006126600470058