A FRAMEWORK FOR THE SOFTWARE SECURITY ANALYSIS OF MOBILEPOWER SYSTEMS

Yung Han Yoon (10732161)

05 May 2021

Mobile devices have become increasingly ubiquitous as they serve many important functions in our daily lives. However, there is not much research on remote threats to the battery and power systems of these mobile devices. The consequences of a successful attack on the power system of a mobile device can range from being a general nuisance, financial harm, to loss of life if emergency communications were interrupted. Despite the relative abundance of work on implementing chemical and physical safety systems for battery cells and power systems, remote cyber threats against a mobile battery system have not been as well studied. This work created a framework aimed at auditing the power systems of mobile devices and validated the framework by implementing it in a case study on an Android device. The framework applied software auditing techniques to both the power system and operating system of a mobile device in a case study to discover possible vulnerabilities which could be used to exploit the power system. Lessons learned from the case study are then used to improve, revise, and discuss the limitations of the framework when put in practice. The effectiveness of the proposed framework was discovered to be limited by the availability of appropriate tools to conduct vulnerability assessments.<br>

Computer System Security

software audit

mobile battery system

vulnerability analysis approach

framework

Android Security

Návrh úloh správy softwarových aktiv / Design of software asset management tasks

Macek, Jáchym

January 2015

Diploma thesis Design of software asset management tasks is focused on area of software asset management in business sector. In a time of still accelerating development of information and communication technologies is Software asset management (SAM) important component of ICT business management. Financial risks of failure to comply licensing terms or rules of licensing often exceed the value of owned software. However, the essence of SAM is not only in eliminating the financial risks, but also in enhancing ICT security or gaining competitive advantage while respecting the SAM principles. Main goal of this thesis is to analyze software asset management and design tasks to reference model of ICT management MBI. This theses is divided into two parts. First part characterizes SAM, licensing and related topics. First part is based on specialized sources and information from literary research. The output is a comprehensive summary of this issue, which serves as theoretical base for next part of this thesis. Second part is devoted to designing the task of Software asset management, the task of Software audit and defining its links to other objects in the MBI model. Furthermore, this thesis creates new objects like roles, methods or documents. Second part is based on theoretical base which was created in the first part and from consultations with IT field experts. The outputs are tasks which are implemented in the MBI model. Goal is fulfilled after creating these outputs. The benefits of this thesis are mostly the tasks extending MBI model and offering best practice for software asset management and software audit. Outcomes of this thesis should help users of reference model and IT community in general.