Abstract
Currently, many people use the smart phone throughout the world, and the government and enterprise also use it to improve business efficiency. However, there is a risk that the confidential information of the government or enterprise can be disclosed, if the malicious or forged/altered App is installed and executed in the smart phone used for work. Apps distributed by the domestic App Store are verified in advance, using the independent verification system of each App Store. However, those App Stores don’t use the common verification system, and their verification system is lacking security features. Besides, the Android Apps can be installed and used, using the alternative method (Android black market and APK file), instead of the official App Store. As a result, the use of the non-verified App is rarely controlled. To prevent the alternative method, mobile device management (MDM) and other methods are employed but are not quite effective. To supplement these shortcomings, this paper proposes a method of providing a reliable smart phone environment to users, by verifying the safety of the App using the common verification method for Android phones, and managing the verified App with a whitelist technology, and testing the installed App periodically.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Kang H et al (2012) Mobile broadband and mobile business model. Korea Information Society Development Institute
AhnLab (2011) AhnLab V3 Mobile+ for transaction, 5
Cheon W et al (2012) Mobile security diagnosis system to cope with smart phone malicious code. J. Korean Inst. Inf. Technol. 22:537–544 (3rd edition)
Tatli EI, Stegemann D, Lucks S (2005) Security challenges of location-aware mobile business
Lee K, Tolentino RS, Park GC, Kim YT (2010) A study on architecture of malicious code blocking scheme with white list in smartphone environment
Ongtang M, McLaughlin S, Enck W, McDaniel P (2009) Semantically rich application-centric security in Android
McAfee (2013) McAfee threat report: fourth quarter 2012
Reddy N, Jeon J, Vaughan J, Millstein T, Foster J (2011) Foster application-centric security policies in unmodified Android
Krishnan P, Hafner S, Zeiser A (2011) Applying assurance techniques to a mobile phone application
Acknowledgments
This research was supported by the MSIP (Ministry of Science, ICT and Future Planning), Korea, under the Convergence-ITRC (Convergence Information Technology Research Center) support program (NIPA-2013-H0401-13-1004) supervised by the NIPA.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer Science+Business Media Dordrecht
About this paper
Cite this paper
Jang, U., Suh, C., Lim, H. (2014). A Study on the Efficient Management of Android Apps Using a Whitelist. In: Park, J., Zomaya, A., Jeong, HY., Obaidat, M. (eds) Frontier and Innovation in Future Computing and Communications. Lecture Notes in Electrical Engineering, vol 301. Springer, Dordrecht. https://doi.org/10.1007/978-94-017-8798-7_58
Download citation
DOI: https://doi.org/10.1007/978-94-017-8798-7_58
Published:
Publisher Name: Springer, Dordrecht
Print ISBN: 978-94-017-8797-0
Online ISBN: 978-94-017-8798-7
eBook Packages: EngineeringEngineering (R0)