Smart devices have spread everywhere in our daily lives, and the capabilities of smart devices equipped with a variety of sensors and peripherals are increasing. However, these devices can possibly be misused in various environments. For instance, sensitive data in enterprises and federal offices can be leaked by the use of cameras and microphones on smart devices. In classrooms, students can obtain unauthorized information during exams. Moreover, smart devices can be used to take pictures or record videos without permissions in less stringent environments such as gym locker rooms and movie theaters. Therefore, we need methods to prevent these situations instead of ad hoc methods in such restricted spaces. In this dissertation, we focus on how to regulate smart devices in restricted spaces. We propose ARM TrustZone-based solutions to enforce policies on smart devices. In particular, the dissertation makes the following two contributions. First, we present a systematic approach for restricted space hosts to analyze and regulate guest devices using remote memory operations in the restricted space. In our approach, hosts’ policies are enforced by a small trusted computing base that executes on the guest devices. We also show that our approach provides strong security guarantees by leveraging the ARM TrustZone. Second, we propose ForceDroid, a policy enforcement system that provides a higher-level abstraction in the restricted spaces. We leverage Security-Enhanced Linux in Android (SEAndroid) to support fine-grained access control, and use Near field communication (NFC) to securely communicate between guests and hosts. In ForceDroid, predefined policies on guest devices are enforced by hosts’ requests.
Subject (authority = RUETD)
Topic
Computer Science
Subject (authority = ETD-LCSH)
Topic
Smartphones
Subject (authority = ETD-LCSH)
Topic
Security systems
RelatedItem (type = host)
TitleInfo
Title
Rutgers University Electronic Theses and Dissertations
Identifier (type = RULIB)
ETD
Identifier
ETD_9510
PhysicalDescription
Form (authority = gmd)
electronic resource
InternetMediaType
application/pdf
InternetMediaType
text/xml
Extent
1 online resource (70 pages : illustrations)
Note (type = degree)
Ph.D.
Note (type = bibliography)
Includes bibliographical references
Note (type = statement of responsibility)
by Daeyoung Kim
RelatedItem (type = host)
TitleInfo
Title
School of Graduate Studies Electronic Theses and Dissertations
Identifier (type = local)
rucore10001600001
Location
PhysicalLocation (authority = marcorg); (displayLabel = Rutgers, The State University of New Jersey)
I hereby grant to the Rutgers University Libraries and to my school the non-exclusive right to archive, reproduce and distribute my thesis or dissertation, in whole or in part, and/or my abstract, in whole or in part, in and from an electronic format, subject to the release date subsequently stipulated in this submittal form and approved by my school. I represent and stipulate that the thesis or dissertation and its abstract are my original work, that they do not infringe or violate any rights of others, and that I make these grants as the sole owner of the rights to my thesis or dissertation and its abstract. I represent that I have obtained written permissions, when necessary, from the owner(s) of each third party copyrighted matter to be included in my thesis or dissertation and will supply copies of such upon request by my school. I acknowledge that RU ETD and my school will not distribute my thesis or dissertation or its abstract if, in their reasonable judgment, they believe all such rights have not been secured. I acknowledge that I retain ownership rights to the copyright of my work. I also retain the right to use all or part of this thesis or dissertation in future works, such as articles or books.