Android智能终端应用关联检测研究
首发时间:2016-12-05
摘要:针对Android智能终端中应用之间跨应用的组件调用行为,提出了一种Android智能终端应用关联行为检测的方法。首先静态预处理智能终端中的应用程序,获取跨应用的组件调用关系表;然后,恢复从源组件到目的组件、源应用到目的应用的关联行为图,使用高效的评估算法PageRank,对以应用为单位的关联关系进行评估,衡量应用在关联关系中的影响力;其次,在关联评估结果基础上结合权限申明以及组件调用参数信息,分析关联行为的权限泄露和权限劫持风险;最后,用该方法对Android智能终端中的应用进行检测。结果显示:在10个测试终端样本共160款应用的测试中,该检测方法可以有效地提取出关联行为,终端中应用种类越多,检测出的关联行为越完整,关联评估结果较好地描述了应用在关联网中的影响力,安全分析得到针对关联行为的权限泄露、组件劫持分析成果。
For information in English, please click here
Research on Android Connecting Applications Security Detection
Abstract:In order to analysis the connection bewteen different applications in Android mobile devices, this paper presents a method of Android mobile device connecting applications security detection.Firstly, extracting all applications in devices. Then decompiling APK files and storing information in configuration files. Based on smali code, constructing components call graph between different applications. According to components call graph and application relationship, using PageRank algorithm to assess the influence of applications in device's application connecting network. By comparing sensitive API related permissions in called components and permission statements in calling application, analyzing the risk of privilege mission leakage. By comparing different called components intent filters information for same calling component, analyzing the possibility of component hijacking. Finally, 160 different applications from 10 Android devices are tested. The experimental results show that the scheme can analyze component connection application relationship and security risk in the mobile terminal effectively.
Keywords: Android component connecting applications privilege mission leakage component hijacking
基金:
论文图表:
引用
No.4712032117146714****
同行评议
共计0人参与
勘误表
Android智能终端应用关联检测研究
评论
全部评论0/1000