Lecture Embedded System Security A. R. Darmstadt, Introduction Mobile Security

Transcription

1

2 Smartphones and their applications have become an integral part of information society Security and privacy protection technology is an enabler for innovative business models Recent research on mobile phone security (main focus on Android) 2

3 Different & more complicated than PC world Mutual mistrust, resource constraints, Mobile device security is not a matter of smartphone, it always existed Users Regulator Enterprises Network Providers Service Providers Device Manufacturer 3

4 Different & more complicated than PC world Mutual mistrust, resource constraints, Mobile device security is not a matter of smartphone, it always existed Enterprise; 1. Separation of corporate assets Users Regulator Enterprises End users; 1. Reliability app separation 2. Theft deterrence immutable ID 3. Privacy app separation 4. Regulators; 1. RF type approval secure storage 2. Theft deterrence immutable ID 3. 4 Network Providers Mobile network operators; 1. Subsidy locks immutable ID 2. Copy protection device authentication, app separation 3. Service Providers Device Manufacturer

5 Mobile Phone Features Interfaces GPS, WiFi, Bluetooth, Infrared Call, SMS, MP3, Video Online Services Browsing, E Mail, E Shopping, Social Networking Location Services Navigation, Recommendation 5

6 Bluetooth Discovery Bluetooth interface should only be discovered at home Requires location recognition Lend Phone Access control to sensitive data (e.g., SMS) when lending to others Requires user recognition Application Restriction in Company A company restricts the set of applications which can be used while the employee is working Requires policy enforcement by trusted third parties 6

7 Company Policy App 1 App 2 App 3 App 4 App 5 7

8 Company Policy App 1 App 2 App 3 App 4 App 5 8

9 Company Policy App 1 App 3 App 4 9

10 Company App 1 App 3 App 4 10

11 11

12 Android ios Symbian Research In Motion Microsoft Other Oses 0 Q4/2011 Based on Gartner Statistics (February 2012) 12

13 13

14 Millions of Apps available today Developed by thousands of different developers Attack Vector 1: Mobile Malware Apps may contain malicious code Attack Vector 2: Runtime Attacks Apps may suffer from various vulnerabilities (e.g., buffer overflow) allowing runtime attacks 14

15 15

16 Attacks on Privacy Location, E Mail, Contacts Runtime Attacks Code Injection, Return Oriented Programming, Kernel Exploits Attack Vectors Hardware Attacks GPS, GSM Module, Base Station Malware Trojans, Viruses, Worms 16

17 17

18 Request /iphone3,1_4.0.pdf 1) Exploit PDF Viewer Vulnerability by means of Return Oriented Programming 2) Start Jailbreak 3) Download required system files 4) Jailbreak Done 18

19 User visits adversary web page Send malicious webpage Send SMS Database 19

20 0 Permissions Malicious App 1) Ask Browser for data transfer from a remote server 2) Browser forwards request 3) Files are transmitted to SD card Android Web Browser INTERNET Permission 20

21 Android Web Browser Permission: INSTALL_PACKAGES 1) Exploit Bug in web Browser 2) Enforce the installation of various apps 21

22 APP_B Permission: Internet APP_A Permission: Record Audio 22 1) Call Credit Institute 2) Credit Card Number is extracted from the speech

23 APP_B Permission: Internet Read Android Core Application APP_A Permission: Record Audio Write Volume Setting 23

24 Forward Audio Forward Audio Base Station (under control of adversary) Baseband Processor Baseband Processor 24