Android应用缺陷分析方法研究
首发时间:2015-12-08
摘要:随着移动网络技术的繁荣,移动应用安全缺陷所带来的问题日渐突显,传统的Android应用缺陷分析方法仅对单个软件做分析,这在保障移动智能终端安全上作用十分有限。针对这一问题,本论文提出了一种面向移动应用的安全缺陷分析与模型建立方法,该方法首先将移动应用按照功能进行分类;之后,针对每一类型的安全缺陷利用静态代码分析方法获取其安全缺陷集合;然后,针对安全缺陷集合进行攻击,进而获取每一类移动应用的触发模型。触发模型可以指出,当前类型应用软件容易受到哪一类API组合的攻击。
For information in English, please click here
The Study of Analysis Method of Mobile Application Defect
Abstract:With the prosperity of the mobile network technology, the mobile application security flaw problem brought by the increasingly highlight, the Android defects of traditional analysis method only analysis is done in a single software, this plays a limited role on mobile intelligent terminal security. In order to solve this problem, this paper puts forward a mobile application oriented security vulnerability analysis and model building method, this method will first mobile application according to the function classification; Later, for each type of security vulnerability static code analysis method is used to collect the set safety defects; Then, in view of the security vulnerability collection to attack, and then get trigger to each type of mobile application model. Trigger model can be pointed out that the current type application vulnerable to what kind of combination of API.
Keywords: Application classification Defect analysis Trigger model The finite state machine
论文图表:
引用
No.4666221111777214****
同行评议
共计0人参与
勘误表
Android应用缺陷分析方法研究
评论
全部评论0/1000