Evaluation of Cryptographic Capabilities for the Android Platform

González, David; Esparza, Óscar; Muñoz, José L.; Alins, Juanjo; Mata, Jorge García

doi:10.1007/978-3-319-19210-9_2

Cited by 7 publications

(4 citation statements)

References 2 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Gonzalez et al [13] studied Android's cryptography framework and integrated tools. The authors evaluated the cryptographic services offered by a number of modules, including Bouncy Castle, Crypto, and Har-monyJSSE.…”

Section: Related Workmentioning

confidence: 99%

Analysis of Cryptography Algorithms Implemented in Android Mobile Application

Salkanović

Ljubić

Stanković

et al. 2021

ITC

View full text Add to dashboard Cite

This paper evaluates the performances of numerous encryption algorithms on mobile devices running the Android operating system. The primary objective of our research was to measure and compare the relative performances of tested algorithm implementations (Data Encryption Standard (DES), 3DES, Advanced Encryption Standard (AES), ChaCha20, Blowfish, and Rivest Cipher 4 (RC4)) on the Android platform. The algorithms were compared in terms of CPU utilization by measuring the time required to encrypt and decrypt variable size text files. Besides evaluating the six common symmetric encryption ciphers, a comparison has been conducted for several Password-Based Encryption (PBE) algorithms. Diverse cipher transformations were evaluated for each algorithm by utilizing various feedback modes and padding schemes. Two smartphone devices were used for testing, with different versions of the Android operating system and hardware specifications. The summarized performance outcomes for various cipher transformations are presented to demonstrate the effectiveness of each algorithm.

show abstract

Section: Related Workmentioning

confidence: 99%

Analysis of Cryptography Algorithms Implemented in Android Mobile Application

Salkanović

Ljubić

Stanković

et al. 2021

ITC

View full text Add to dashboard Cite

show abstract

“…In 2018, Li et al [Li, Luo, Zhao et al (2018)] proposed a provably secure APK redevelopment authorization scheme in the standard model. In addition, González et al [González, Esparza, Muñoz et al (2015)] analyzed the encryption algorithms and encryption structures provided by Android in the research. They found that the encryption algorithms provided were not the same in multiple system versions of Android.…”

Section: Previous Workmentioning

confidence: 99%

CM-Droid: Secure Container for Android Password Misuse Vulnerability

Wen¹,

Li²,

Li³

et al. 2019

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

Android applications are associated with a large amount of sensitive data, therefore application developers use encryption algorithms to provide user data encryption, authentication and data integrity protection. However, application developers do not have the knowledge of cryptography, thus the cryptographic algorithm may not be used correctly. As a result, security vulnerabilities are generated. Based on the previous studies, this paper summarizes the characteristics of password misuse vulnerability of Android application software, establishes an evaluation model to rate the security level of the risk of password misuse vulnerability and develops a repair strategy for password misuse vulnerability. And on this basis, this paper designs and implements a secure container for Android application software password misuse vulnerability: CM-Droid.

show abstract

“…Two recent studies by Braga and Nascimento [37] and González et al [38] have shown that, in spite of the observed diversity of cryptographic libraries in academic literature, these libraries are not necessarily publicly available or ready for integration with third party software. In spite of many claims of generality, almost all of them were constructed with a narrow scope in mind and prioritize academic interests for nonstandard cryptography.…”

Section: Advanced Cryptographic Apismentioning

confidence: 99%

“…Furthermore, portability to modern platforms, such as Android, used to be a commonly neglected concern in cryptographic libraries [37]. So much so, that modern platforms only offer by default to the ordinary programmer a few options of common cryptographic services [38].…”

Section: Advanced Cryptographic Apismentioning

confidence: 99%

A Survey on Tools and Techniques for the Programming and Verification of Secure Cryptographic Software

Braga

Dahab

2015

Anais Do XV Simpósio Brasileiro De Segurança Da Informação E De Sistemas Computacionais (SBSeg 2015)

View full text Add to dashboard Cite

This paper contributes to broaden the discussion on tools and techniques in cryptographic programming and verification. The paper accomplishes three goals: (i) surveys recent advances in supporting tools for cryptographic software programming and verification; (ii) associates these tools to current security practices; and (iii) organizes their use into software programming and verification steps. The paper concludes that there is no single tool for secure development of cryptographic software. Instead, only a well-crafted toolkit can cover the whole landscape of secure cryptographic software coding and verification.

show abstract

Evaluation of Cryptographic Capabilities for the Android Platform

Cited by 7 publications

References 2 publications

Analysis of Cryptography Algorithms Implemented in Android Mobile Application

Analysis of Cryptography Algorithms Implemented in Android Mobile Application

CM-Droid: Secure Container for Android Password Misuse Vulnerability

A Survey on Tools and Techniques for the Programming and Verification of Secure Cryptographic Software

Contact Info

Product

Resources

About