A multi-party, fine-grained permission and policy enforcement framework for hybrid mobile applications

What is it about?

Hybrid mobile application (app) development is a technology for developing mobile apps using web technologies. In hybrid mobile apps, developers write the core business code using JavaScript, HTML, and CSS, instead of a platform-specific language such as Java for Android, or SWIFT for iOS. This work presents HybridGuard, a robust and extensible policy enforcement framework for hybrid mobile apps that allows developers to define flexible permissions and fine-grained policies for different parties within a hybrid app to mitigate a wide class of attacks.

Featured Image

Why is it important?

HybridGuard is independent of the hybrid app development framework and does not modify the underlying OS (Android or iOS). HybridGuard can enforce context-aware and history-based policies in hybrid mobile apps and prevent a large class of attacks.