面向安卓应用程序通信机制的恶意攻击检测技术研究
首发时间:2020-06-16
摘要:针对Android应用程序之间通信时存在的Intent劫持、Intent欺骗和应用共谋等攻击,提出了一项系统级组件间交流分析技术(SIAT)。通过在运行时进行实时监控,结合动态污点分析监控控制流和数据流输出监控日志,再利用监控日志构建通信模型,通过模型检测其中的攻击行为。通过对大量实验用例和应用市场的应用的分析,实验结果表明,上述方法的检测准确率较高、有较好的实用性和性能。
For information in English, please click here
Research on Malicious Attack Detection Technology Oriented to Android Application Communication Mechanism
Abstract:Aiming at attacks such as Intent hijacking, Intent spoofing, and application collusion during communication between Android applications, a system-level communication analysis technology (SIAT) is proposed. Through real-time monitoring at runtime, combined with dynamic stain analysis monitoring control flow and data flow output monitoring log, and then use the monitoring log to build a communication model, through which the attack behavior is detected. Through the analysis of a large number of experimental use cases and the application of the application market, the experimental results show that the above methods have higher detection accuracy, better practicality and performance.
Keywords: network security Android security communication between components dynamic stain analysis
引用
No.****
动态公开评议
共计0人参与
勘误表
面向安卓应用程序通信机制的恶意攻击检测技术研究
评论
全部评论0/1000