The capability of interacting with web content has become increasingly common among mobile apps.While web-app interaction can facilitate many new functionalities and improve app user experience,they also cause various...The capability of interacting with web content has become increasingly common among mobile apps.While web-app interaction can facilitate many new functionalities and improve app user experience,they also cause various notable security attacks on mobile apps or web content.The root cause is lack of proper access control mechanisms for web-app interactions on mobile OSes.Existing solutions usually adopt either an origin-centric design or a code-centric deign,and suffer from one or several of the following limitations:coarse protection granularity,poor flexibility in terms of access control policy establishment,and incompatibility with existing apps/OSes due to the need of modifying the apps and/or the underlying OS.More importantly,none of the existing works can organically deal with all the five web-app interaction mechanisms.In this paper,we first identify and survey five mechanisms through which web content interacts with mobile apps.We then propose ReACt,a novel Re source-centric A ccess C on t rol design that can coherently work with all the web-app interaction mechanisms while addressing the above-mentioned limitations.We have implemented a prototype system on Android,and performed extensive evaluation on it.The evaluation results show that our system works well with existing commercial off-the-shelf Android apps and different versions of Android OS,and it can achieve the design goals with small overhead.展开更多
为建设更加适合在线学习和混合式教学的数学实验网络平台,运用最新的MATLAB Web App技术和JavaWeb技术,开发了数学实验在线课堂。该在线课堂将实验教学与其同步的演示操作封装成MATLAB Web App,开发了基础实验教学、综合实验教学和展示W...为建设更加适合在线学习和混合式教学的数学实验网络平台,运用最新的MATLAB Web App技术和JavaWeb技术,开发了数学实验在线课堂。该在线课堂将实验教学与其同步的演示操作封装成MATLAB Web App,开发了基础实验教学、综合实验教学和展示Web App模板,实现了线上教学、实验练习与互动演示的深度融合。实践表明,该在线课堂提高了数学实验项目的上线效率、质量和在线教学水平。展开更多
文摘The capability of interacting with web content has become increasingly common among mobile apps.While web-app interaction can facilitate many new functionalities and improve app user experience,they also cause various notable security attacks on mobile apps or web content.The root cause is lack of proper access control mechanisms for web-app interactions on mobile OSes.Existing solutions usually adopt either an origin-centric design or a code-centric deign,and suffer from one or several of the following limitations:coarse protection granularity,poor flexibility in terms of access control policy establishment,and incompatibility with existing apps/OSes due to the need of modifying the apps and/or the underlying OS.More importantly,none of the existing works can organically deal with all the five web-app interaction mechanisms.In this paper,we first identify and survey five mechanisms through which web content interacts with mobile apps.We then propose ReACt,a novel Re source-centric A ccess C on t rol design that can coherently work with all the web-app interaction mechanisms while addressing the above-mentioned limitations.We have implemented a prototype system on Android,and performed extensive evaluation on it.The evaluation results show that our system works well with existing commercial off-the-shelf Android apps and different versions of Android OS,and it can achieve the design goals with small overhead.
文摘为建设更加适合在线学习和混合式教学的数学实验网络平台,运用最新的MATLAB Web App技术和JavaWeb技术,开发了数学实验在线课堂。该在线课堂将实验教学与其同步的演示操作封装成MATLAB Web App,开发了基础实验教学、综合实验教学和展示Web App模板,实现了线上教学、实验练习与互动演示的深度融合。实践表明,该在线课堂提高了数学实验项目的上线效率、质量和在线教学水平。