In pursuit of a secure UI: The cycle of breaking and fixing Android’s UI

Bove, Davide; Kalysch, Anatoli

Author:

Abstract

Hijacking user clicks and touch gestures has become a common attack vector and offers a stealthy approach at escalating the privileges of a process without raising red flags among users or AV software. Exploits falling into this category are categorized as clickjacking attacks and have gained increased popularity on mobile devices, Android being the recent victim of a series of UI vulnerabilities. Focusing on the Android OS this paper highlights previous and current UI-based attack vectors and finishes with an overview of security mechanisms, covering both system-wide as well as app-level protection measures.

Citation
BibTeX

Bove, D. & Kalysch, A., (2019). In pursuit of a secure UI: The cycle of breaking and fixing Android’s UI. it - Information Technology: Vol. 61, No. 2-3. Berlin: De Gruyter. (S. 147-156). DOI: 10.1515/itit-2018-0023

@article{mci/Bove2019,
author = {Bove, Davide AND Kalysch, Anatoli},
title = {In pursuit of a secure UI: The cycle of breaking and fixing Android’s UI},
journal = {it - Information Technology},
volume = {61},
number = {2-3},
year = {2019},
,
pages = { 147-156 } ,
doi = { 10.1515/itit-2018-0023 }
}

Sollte hier kein Volltext (PDF) verlinkt sein, dann kann es sein, dass dieser aus verschiedenen Gruenden (z.B. Lizenzen oder Copyright) nur in einer anderen Digital Library verfuegbar ist. Versuchen Sie in diesem Fall einen Zugriff ueber die verlinkte DOI: 10.1515/itit-2018-0023

Haben Sie fehlerhafte Angaben entdeckt? Sagen Sie uns Bescheid: Send Feedback