International Journal of Computer Networks and Communications Security (IJCNCS)
In this paper, the authors are proposing a firewall-based solution for protecting Android operating systems against privilege escalation attacks, mainly, confused deputy attacks and collusion attacks. The proposed firewall protects the applications that have critical privilege permission. Any other applications without the critical permission will not be able to call protected applications via privilege escalation attacks. Since the Internet is the door of attack, they consider the permission to access Internet as a critical permission. As such, any application cannot access the internet directly or indirectly, through privilege escalation, without confirmation of the user disallowing invulnerable leakage of private data.