LC1860智能操作系统安全增强机制的设计与实现

发布时间：2018-02-13 16:03

本文关键词： 安卓系统安全性认证机制防火墙策略 MD5加密校验　出处：《山东大学》2017年硕士论文　论文类型：学位论文

【摘要】：自从进入二十一世纪以来,智能手机得到了快速的发展,这离不开科学与技术的进步,离不开研究人员,技术人员的辛勤劳动,搭载于智能终端之上的操作系统占据着非常重要的地位,而其中的安卓系统作为一个开源操作系统,自从其2007年诞生以来因其开源特性与良好的可扩展性吸引着越来越多的开发者以及智能终端厂商加入到这个打阵营之中,安卓系统逐渐占据了在智能手机和平板电脑领域的市场份额。对于智能终端厂商而言,安卓系统的开源性使其能够定制自己期望的操作系统,不仅仅能够定制自己的UI,还可以优化系统,发挥更好的性能,提供自己的操作系统特性。任何的计算机系统,无论是系统软件层面,还是应用软件层面,系统的安全都是一个非常重要的要考虑的因素,而操作系统作为其他应用运行的平台,其安全机制的重要性更是毋庸多言。所以说在厂商在定制自己操作系统的过程中,操作系统的安全机制是其考虑的重中之重,构建一个安全的操作系统是定制操作系统的基础。本文借鉴安卓源码实现加固操作系统增强安全机制,核心模块是驱动的认证机制、应用的认证机制、精细化的网络防火墙策略机制以及一个配套的配置文件生成工具的实现,驱动认证保证HAL层驱动加载的安全,应用认证保证应用运行与安装的安全,防火墙策略保证网络环境下的安全,在讨论认证实现的背景和对其开发设计所面对问题的基础上,对该系统所需要的功能需求和非功能性需求进行调研与认真分析,并对该系统的需求实现使用各种图例来进行详细的说明。在分析出需求分析之后,架构设计便是接下来的步骤。进一步进行了对该系统实现的详细设计。根据系统的功能需求进行分析得出的安全性,可靠性以及稳定性方面的需求分别进行了不同模块的设计。这些模块等既有自己的功能,又能互相协作整体提升系统的各个性能。通过对系统的详细设计,制定出了系统的整体效果图和各个部分的实现。最后,该文对加固系统的增强安全机制的应用效果从性能,功能,稳定等方面进行了测试,并对该系统的实现提出了进一步的改进意见。
[Abstract]:Since 21th century, smart phones have been developing rapidly, which is inseparable from the progress of science and technology, and the hard work of researchers and technicians. The operating system on top of the smart terminal occupies a very important position, and the Android operating system is an open source operating system. Since its inception in 2007, its open source features and good scalability have attracted more and more developers and smart terminal vendors to join the camp. Android is gaining market share in smartphones and tablets. For smartphone makers, Android's open-source nature allows it to customize its desired operating system. Not only can you customize your own UIs, but you can also optimize your system, perform better performance, and provide your operating system features. Any computer system, whether at the system software level or at the application software level, The security of the system is a very important factor to consider, and the security mechanism of the operating system, as a platform for other applications to run, is even more important. Therefore, in the process of customizing the operating system, The security mechanism of the operating system is the most important consideration, and the construction of a secure operating system is the basis of the customized operating system. This paper uses the Android source code to strengthen the security mechanism of the operating system, and the core module is the driver authentication mechanism. The application authentication mechanism, the detailed network firewall policy mechanism and the implementation of a matching configuration file generation tool, the driver authentication guarantees the HAL layer driver loading security, the application authentication guarantees the application operation and the installation security, the application authentication guarantees the application operation and the installation security, the driver authentication guarantees the HAL layer driver loading security, The firewall strategy ensures the security in the network environment. On the basis of discussing the background of authentication implementation and the problems faced by the development and design of the firewall, the functional and non-functional requirements of the system are investigated and analyzed. And use various legends to explain the requirement realization of the system in detail. After analyzing the requirement analysis, Architecture design is the next step. Further, the detailed design of the system is carried out. According to the functional requirements of the system, the security of the system is analyzed. The requirements of reliability and stability are designed for different modules. These modules have their own functions, and they can cooperate with each other to improve the performance of the system as a whole. The overall effect of the system and the implementation of each part are worked out. Finally, the application effect of the reinforcement system is tested in terms of performance, function, stability and so on. Further improvement suggestions are put forward for the realization of the system.
【学位授予单位】：山东大学
【学位级别】：硕士
【学位授予年份】：2017
【分类号】：TP311.52;TP316

【参考文献】