Toward risk-driven security measurement for android smartphone platforms

Reijo Savola; Teemu Väisänen; Antti Evesti; Pekka Savolainen; Juha Kemppainen; Marko Kokemäki

doi:10.1109/ISSA.2013.6641049

Toward risk-driven security measurement for android smartphone platforms

Reijo Savola, Teemu Väisänen, Antti Evesti, Pekka Savolainen, Juha Kemppainen, Marko Kokemäki

Elektrobit (EB)

Research output: Chapter in Book/Report/Conference proceeding › Conference article in proceedings › Scientific › peer-review

2 Citations (Scopus)

Abstract

Security for Android smartphone platforms is a challenge arising in part from their openness. We analyse the security objectives of two distinct envisioned public safety and security mobile network systems utilising the Android platform. The analysis is based on an industrial risk analysis activity. In addition, we propose initial heuristics for security objective decomposition aimed at security metrics definition. Systematically defined and applied security metrics can be used for informed risk-driven security decision-making, enabling higher security effectiveness.

Original language	English
Title of host publication	Proceedings of the ISSA 2013 Conference
Publisher	IEEE Institute of Electrical and Electronic Engineers
Number of pages	8
ISBN (Print)	978-1-4799-0808-0
DOIs	https://doi.org/10.1109/ISSA.2013.6641049
Publication status	Published - 2013
MoE publication type	A4 Article in a conference publication
Event	2013 Information Security for South Africa - Johannesburg, South Africa Duration: 14 Aug 2013 → 16 Aug 2013

Conference

Conference	2013 Information Security for South Africa
Abbreviated title	ISSA 2013
Country/Territory	South Africa
City	Johannesburg
Period	14/08/13 → 16/08/13

Access to Document

10.1109/ISSA.2013.6641049

Cite this

@inproceedings{09b71fffb39d4392b6415c08622de856,

title = "Toward risk-driven security measurement for android smartphone platforms",

abstract = "Security for Android smartphone platforms is a challenge arising in part from their openness. We analyse the security objectives of two distinct envisioned public safety and security mobile network systems utilising the Android platform. The analysis is based on an industrial risk analysis activity. In addition, we propose initial heuristics for security objective decomposition aimed at security metrics definition. Systematically defined and applied security metrics can be used for informed risk-driven security decision-making, enabling higher security effectiveness.",

author = "Reijo Savola and Teemu V{\"a}is{\"a}nen and Antti Evesti and Pekka Savolainen and Juha Kemppainen and Marko Kokem{\"a}ki",

year = "2013",

doi = "10.1109/ISSA.2013.6641049",

language = "English",

isbn = "978-1-4799-0808-0",

booktitle = "Proceedings of the ISSA 2013 Conference",

publisher = "IEEE Institute of Electrical and Electronic Engineers",

address = "United States",

note = "2013 Information Security for South Africa, ISSA 2013 ; Conference date: 14-08-2013 Through 16-08-2013",

}

Savola, R, Väisänen, T, Evesti, A, Savolainen, P, Kemppainen, J & Kokemäki, M 2013, Toward risk-driven security measurement for android smartphone platforms. in Proceedings of the ISSA 2013 Conference. IEEE Institute of Electrical and Electronic Engineers, 2013 Information Security for South Africa, Johannesburg, South Africa, 14/08/13. https://doi.org/10.1109/ISSA.2013.6641049

TY - GEN

T1 - Toward risk-driven security measurement for android smartphone platforms

AU - Savola, Reijo

AU - Väisänen, Teemu

AU - Evesti, Antti

AU - Savolainen, Pekka

AU - Kemppainen, Juha

AU - Kokemäki, Marko

PY - 2013

Y1 - 2013

N2 - Security for Android smartphone platforms is a challenge arising in part from their openness. We analyse the security objectives of two distinct envisioned public safety and security mobile network systems utilising the Android platform. The analysis is based on an industrial risk analysis activity. In addition, we propose initial heuristics for security objective decomposition aimed at security metrics definition. Systematically defined and applied security metrics can be used for informed risk-driven security decision-making, enabling higher security effectiveness.

AB - Security for Android smartphone platforms is a challenge arising in part from their openness. We analyse the security objectives of two distinct envisioned public safety and security mobile network systems utilising the Android platform. The analysis is based on an industrial risk analysis activity. In addition, we propose initial heuristics for security objective decomposition aimed at security metrics definition. Systematically defined and applied security metrics can be used for informed risk-driven security decision-making, enabling higher security effectiveness.

U2 - 10.1109/ISSA.2013.6641049

DO - 10.1109/ISSA.2013.6641049

M3 - Conference article in proceedings

SN - 978-1-4799-0808-0

BT - Proceedings of the ISSA 2013 Conference

PB - IEEE Institute of Electrical and Electronic Engineers

T2 - 2013 Information Security for South Africa

Y2 - 14 August 2013 through 16 August 2013

ER -

Toward risk-driven security measurement for android smartphone platforms

Abstract

Conference

Access to Document

Fingerprint

Cite this