%0 Conference Proceedings
%T FlowConSEAL: Automatic Flow Consistency Analysis of SEAndroid and SELinux Policies
%+ Indian Institute of Technology Bombay (IIT Bombay)
%+ Institute for Development and Research in Banking Technology (IDRBT)
%A Radhika, B., S.
%A Narendra Kumar, N., V.
%A Shyamasundar, R., K.
%Z Part 5: Security Analysis and Private Evaluation
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 32th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec)
%C Bergamo, Italy
%Y Florian Kerschbaum
%Y Stefano Paraboschi
%I Springer International Publishing
%3 Data and Applications Security and Privacy XXXII
%V LNCS-10980
%P 219-231
%8 2018-07-16
%D 2018
%R 10.1007/978-3-319-95729-6_14
%Z Computer Science [cs]Conference papers
%X SELinux/SEAndroid policies used in practice contain tens of thousands of access rules making it hard to analyse them. In this paper, we present an algorithm for reasoning about the consistency of a given policy by analysing the information flows implied by it. For this purpose, we model SELinux policy rules using the Readers-Writers Flow Model (RWFM). Using this model, our method identifies all possible indirect flows due to a given policy that could lead to inconsistency. One of the main features of the method is that it not only identifies inconsistencies in the policy but also traces the rules that lead to inconsistency. To distinguish between benign and vulnerable indirect flows, we further categorise the indirect rules that directly contradict neverallow rules in the policy and hence have a high potential for information leak. We further rank the rules and domains based on the number of policy violations they cause. We have also implemented a tool FlowConSEAL based on the above method and have applied it on various SELinux/SEAndroid policies for providing a succinct feedback to the user.
%G English
%Z TC 11
%Z WG 11.3
%2 https://inria.hal.science/hal-01954401/document
%2 https://inria.hal.science/hal-01954401/file/470961_1_En_14_Chapter.pdf
%L hal-01954401
%U https://inria.hal.science/hal-01954401
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-WG
%~ IFIP-TC11
%~ IFIP-WG11-3
%~ IFIP-DBSEC
%~ IFIP-LNCS-10980