An SELinux-based Intent manager for Android

Simone Mutti, Enrico Bacis, Stefano Paraboschi

In 2015 IEEE Conference on Communications and Network Security (CNS)
Florence, Italy, September 28-30, 2015

Get the paper Cite

The support for Mandatory Access Control offered by SELinux has become a significant component of the security design of the Android operating system, offering robust protection and the ability to support system-level policies enforced by all the elements of the system. A well-known security-sensitive aspect of Android that currently SELinux does not cover is the abuse of intents, which represent the Android approach to inter-process communication. We propose SEIntentFirewall, an SELinux intent manager that provides fine-grained access control over Intent objects, permitting to cover within MAC policies the use of intents.

@inproceedings{7346916,
    author = {S. {Mutti} and E. {Bacis} and S. {Paraboschi}},
    booktitle = {2015 IEEE Conference on Communications and Network Security
                 (CNS)},
    title = {An SELinux-based intent manager for Android},
    doi = {10.1109/CNS.2015.7346916},
    location = {Florence, Italy},
    day = {28-30},
    month = {September},
    year = {2015},
}

Poster
IEEE CNS15 Best Poster Award