Security Metrics for the Android Ecosystem
@article{Thomas2015SecurityMF,
title={Security Metrics for the Android Ecosystem},
author={Daniel R. Thomas and A. Beresford and Andrew S C Rice},
journal={Proceedings of the 5th Annual ACM CCS Workshop on Security and Privacy in Smartphones and Mobile Devices},
year={2015}
}The security of Android depends on the timely delivery of updates to fix critical vulnerabilities. In this paper we map the complex network of players in the Android ecosystem who must collaborate to provide updates, and determine that inaction by some manufacturers and network operators means many handsets are vulnerable to critical vulnerabilities. We define the FUM security metric to rank the performance of device manufacturers and network operators, based on their provision of updates and… CONTINUE READING
Supplemental Presentations
Topics from this paper
61 Citations
The Android OS stack and its vulnerabilities: an empirical study
- Computer Science
- Empirical Software Engineering
- 2019
- 3
- Highly Influenced
LaChouTi: kernel vulnerability responding framework for the fragmented Android devices
- Engineering, Computer Science
- ESEC/SIGSOFT FSE
- 2017
- 3
Deploying Android Security Updates: an Extensive Study Involving Manufacturers, Carriers, and End Users
- Computer Science
- CCS
- 2020
- Highly Influenced
An Economic Study of the Effect of Android Platform Fragmentation on Security Updates
- Computer Science
- Financial Cryptography
- 2018
- 10
- PDF
References
SHOWING 1-2 OF 2 REFERENCES
url: http://www.cesg.gov.uk/servicecatalogue/Product- Assurance/CPA/Pages/Samsung-Galaxy-S6-and-S6-Edge- Certification-Details
- CESG Samsung Galaxy S6 & S6 Edge -Certification Details. 07
- 2015
Android 4.2. 10/2013. url: https://www.gov.uk/government/publications/end- user-devices-security-guidance-android-42
- Android 4.2. 10/2013. url: https://www.gov.uk/government/publications/end- user-devices-security-guidance-android-42