Skip to Main Content
 

Global Search Box

 
 
 
 

Files

File List


Thesis_Rakesh.pdf (2.49 MB)

ETD Abstract Container

Abstract Header

A User-Centric Security Policy Enforcement Framework for Hybrid Mobile Applications

Sunkaralakunta Venkatarama Reddy, Rakesh
http://orcid.org/0000-0002-5604-1472
http://rave.ohiolink.edu/etdc/view?acc_num=dayton1564744609523447

Abstract Details

2019, Master of Science (M.S.), University of Dayton, Computer Science.
Hybrid mobile application development frameworks are used to develop mobile applications with web standards, thus achieving cross-platform development. These frameworks provide JavaScript bridges interfaces for the applications to access the device resources. Despite the advantages of cross-platform development, hybrid mobile apps pose serious security issues as any JavaScript code such as Ads within an app can access the granted device resources and compromise the privacy of users. In this work, we have developed an origin-based and fine-grained policy enforcement framework for hybrid mobile apps to prevent potential malicious behaviors and privacy violations from different origins. We have designed various policy categories, implemented a policy engine to enforce these policies and provided a graphical interface for users to customize these policies based on their requirements. Developed in JavaScript, our framework is highly extensible as it can be adapted into other hybrid frameworks. Our experimental results demonstrated that the framework allows end-users to customize the policies and control the usage of device resources. The simulated attack scenarios are strictly blocked by our policy enforcement engine thus protecting device resource misuse and users' privacy.
Phu H. Phung (Advisor)
Saverio Perugini (Committee Member)
Zhongmei Yao (Committee Member)
Saeedeh Shekarpour (Committee Member)
69 p.
Computer Science
hybrid mobile apps; user-centric policy; fine-grained policy; privacy; usage control

Recommended Citations

Citations

  • Sunkaralakunta Venkatarama Reddy, R. (2019). A User-Centric Security Policy Enforcement Framework for Hybrid Mobile Applications [Master's thesis, University of Dayton]. OhioLINK Electronic Theses and Dissertations Center. http://rave.ohiolink.edu/etdc/view?acc_num=dayton1564744609523447

    APA Style (7th edition)

  • Sunkaralakunta Venkatarama Reddy, Rakesh. A User-Centric Security Policy Enforcement Framework for Hybrid Mobile Applications. 2019. University of Dayton, Master's thesis. OhioLINK Electronic Theses and Dissertations Center, http://rave.ohiolink.edu/etdc/view?acc_num=dayton1564744609523447.

    MLA Style (8th edition)

  • Sunkaralakunta Venkatarama Reddy, Rakesh. "A User-Centric Security Policy Enforcement Framework for Hybrid Mobile Applications." Master's thesis, University of Dayton, 2019. http://rave.ohiolink.edu/etdc/view?acc_num=dayton1564744609523447

    Chicago Manual of Style (17th edition)

dayton1564744609523447
525
© 2019, all rights reserved.
This open access ETD is published by University of Dayton and OhioLINK.