Towards self-healing smartphone software via automated patching

Azim, Md. Tanzirul; Neamtiu, Iulian; Marvel, Lisa M.

doi:10.1145/2642937.2642955

Cited by 31 publications

(55 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While the OS can restart the application when a fault occurs, application state can be lost, and the application will crash again when faulty code is invoked. To address this problem, in prior work [1] we added failure detection and recovery to Android applications by detecting faults and "sealing off" the faulty part of the application to avoid future faults. An overview of our approach is shown in Figure 2; the reader can ignore the blue callout boxes for now.…”

Section: Self-healing Softwarementioning

confidence: 99%

“…Given a patch size of b bytes, throughput between arbitrary nodes i and j is t i, j and the power to transmit is p tx and power to receive p rx , and the cost to deliver the patch is P patch delivery = bt 0,1 p tx + n−1 ∑ i=1 bt i, j (p tx + p rx ) + bt n−1,n p rx (1) Overall the cost to patch is represented as: p patch = p apply patch + p patch delivery In situations where the network is constrained, the distance from the patch location to the node is many hops (large n) and/or the patch size is large. We may find that p patch >> p(self heal) and p patch >> p(seal off ).…”

Section: Agility Cost Vs Payoffmentioning

confidence: 99%

“…More concretely, MTDs are maneuvers executed by a human or autonomous defender in an attempt to increase the security of an environment. The basic MTD tenet is that randomization renders the perceived attack surface stochastic, it increases the spatio-temporal diversity of the attack surface and thus the cost to the adversary and the time it takes to learn network configurations and exploit vulnerabilities 1 . Absent from the current literature is a systems approach that takes a holistic view of adaptation across multiple layers, multiple time scales and across the network.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Security and Science of Agility

McDaniel

Jaeger

Porta

et al. 2014

Proceedings of the First ACM Workshop on Moving Target Defense

Self Cite

View full text Add to dashboard Cite

Moving target defenses alter the environment in response to adversarial action and perceived threats. Such defenses are a specific example of a broader class of system management techniques called system agility. In its fullest generality, agility is any reasoned modification to a system or environment in response to a functional, performance, or security need. This paper details a recently launched 10-year Cyber-Security Collaborative Research Alliance effort focused in-part on the development of a new science of system agility, of which moving target defenses are a central theme. In this context, the consortium seeks to address the questions of when, what, and how to employ changes to improve the security of an environment, as well as consider how to measure and weigh the effectiveness of different approaches to agility. We discuss several fundamental challenges in developing and using MTD maneuvers, and outline several broad classes of mechanisms that can be used to implement them. We conclude by detailing specific MTD mechanisms used to adaptively quarantine vulnerable code in Android applications, and consider ways of comparing cost and payout of its use.

show abstract

Section: Self-healing Softwarementioning

confidence: 99%

Section: Agility Cost Vs Payoffmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Security and Science of Agility

McDaniel

Jaeger

Porta

et al. 2014

Proceedings of the First ACM Workshop on Moving Target Defense

Self Cite

View full text Add to dashboard Cite

show abstract

“…In addition to studying how to turn regular libraries into proactive libraries that can be exploited to make software systems more reliable, we defined a model-based approach for both the definition of the enforcers and the automatic generation of their implementation, that we call proactive module, for the Android environment. Although the concepts of enforcers and proactive libraries are general, we studied them in the context of the Android ecosystem because many non-trivial and rapidly evolving APIs for resource management are available and problems with resources are frequent [6,7,55].…”

Section: Controlling Interactions With Libraries In Android Apps Thromentioning

confidence: 99%

“…The design and implementation of enforcers is for library developers and in general for developers who want to contribute to the Android ecosystem, while the runtime activation of the enforcers is under the control of the final users.In addition to studying how to turn regular libraries into proactive libraries that can be exploited to make software systems more reliable, we defined a model-based approach for both the definition of the enforcers and the automatic generation of their implementation, that we call proactive module, for the Android environment. Although the concepts of enforcers and proactive libraries are general, we studied them in the context of the Android ecosystem because many non-trivial and rapidly evolving APIs for resource management are available and problems with resources are frequent [6,7,55].This work extends our previous work on proactive libraries [44] by (i) introducing a process, a modelling environment, and a code generation strategy to automatically generate the proactive libraries from a specification of the enforcers, (ii) extending the modelling language used to specify the enforcers with special operations for restoring resources and with the possibility to distinguish if an action taken by an enforcer must be executed before or after an operation performed by the monitored software, (iii) increasing the sophistication of the proactive module to consider the status of Android components, enforcement strategies, and resources simultaneously, (iv) providing a more detailed presentation of the approach and additional background material, (v) extending the empirical evaluation with 15 additional real-world cases from popular Android markets and open-source Android community; and (vi) studying the scalability of the proactive modules and the usefulness of the model-based approach compared to the manual implementation of the enforcers.The paper is organized as follows. Section 2 provides background information about edit automata, which is the formalism used in this paper to specify enforcers, model-driven software development, which is the methodology used to specify and generate the proactive libraries, and Xposed, which is the framework we used to implement the proactive modules for Android.…”

mentioning

confidence: 99%

Controlling Interactions with Libraries in Android Apps Through Runtime Enforcement

Riganelli

Micucci

Mariani

2019

ACM Trans. Auton. Adapt. Syst.

View full text Add to dashboard Cite

Android applications are executed on smartphones equipped with a variety of resources that must be properly accessed and controlled, otherwise the correctness of the executions and the stability of the entire environment might be negatively affected. For example, apps must properly acquire, use, and release microphones, cameras, and other multimedia devices otherwise the behaviour of the apps that use the same resources might be compromised.Unfortunately, several apps do not use resources correctly, for instance due to faults and inaccurate design decisions. By interacting with these apps users may experience unexpected behaviours, which in turn may cause instability and sporadic failures, especially when resources are accessed.In this paper, we present an approach that lets users protect their environment from the apps that use resources improperly by enforcing the correct usage protocol. This is achieved by using software enforcers that can observe executions and change them when necessary. For instance, enforcers can detect that a resource has been acquired but not released, and automatically perform the release operation, thus giving the possibility to use that same resource to the other apps.The main idea is that software libraries, in particular the ones controlling access to resources, can be augmented with enforcers that can be activated and deactivated on demand by users to protect their environment from unwanted app behaviours. We call the software libraries augmented with one or more enforcers proactive libraries because the activation of the enforcer decorates the library with proactive behaviours that can guarantee the correctness of the execution despite the invocation of the operations implemented by the library. For example, enforcers can detect that a resource has not been released on time and proactively release it.Our experimental results with 27 possible misuses of resources in real Android apps reveal that proactive libraries are able to effectively correct library misuses with negligible runtime overheads. Controlling Interactions with Libraries in Android Apps Through Runtime Enforcement • :3to fix a detected problem). For example, when the onStop() callback is generated, the enforcer associated with the library for audio recording is triggered to check if the microphone has been released. If not, the enforcer may force the release of the microphone, and automatically reassign it to the activity once the activity becomes visible to the user again.Since a regular library does not need to be modified to be turned into a proactive library, enforcers can be easily added to existing libraries, without the need of designing libraries as proactive libraries from the very beginning. This eases the incremental adoption of the technology. Moreover, any party may contribute to the definition of the enforcers for a given library and not only the developers of the library. This aspect may facilitate the proliferation of the enforcers. App developers can keep using the usual testing and analysis methods ...

show abstract

Multi‐agent architecture approach for self‐healing systems: Run‐time recovery with case‐based reasoning

Rajput

Sikka

2022

Concurrency and Computation

View full text Add to dashboard Cite

Self-healing is an approach that maintains the health of the system with proper supervision of its functioning and emerges from any unacceptable state during the execution.The complexity of modern distributed systems and dynamic hike in terms of users' access has led to an increase in maintenance. In this paper, a self-healing architecture for services that exploit the autonomous capability of agent technology is proposed.The proposed mechanism is a multi-agent system that comprises different agents with different capabilities and roles. The planning agent, responsible for taking the right decision to revive the system from an unhealthy state to a healthy state, uses a case-based fault recovery mechanism at runtime. The architecture contains a persistent layer that maintains previously occurred failed cases. To determine the best suitable solution, the similarity between the detected fault and recorded failed cases is calculated. The case, having a maximum similarity index value is considered closest to the failure. Multiple recovery strategies like a replacement, restart, alternative resources are been utilized. Also, to validate the proposed architecture, an SOA-based application is used and performance-based evaluation metrics are analyzed.

show abstract

Towards self-healing smartphone software via automated patching

Cited by 31 publications

References 16 publications

Security and Science of Agility

Security and Science of Agility

Controlling Interactions with Libraries in Android Apps Through Runtime Enforcement

Multi‐agent architecture approach for self‐healing systems: Run‐time recovery with case‐based reasoning

Contact Info

Product

Resources

About