Android权限提升攻击漏洞静态检测方法
发布时间:2018-11-07 14:54
【摘要】:随着信息技术的发展和广泛应用,现代人越来越依赖于移动智能手机存储和处理个人信息。众所周知,智能操作系统是智能手机的灵魂,它是智能手机获得成功的基础。Android目前是市场上最受欢迎的智能操作系统,在国内外占有很大的市场份额。Android平台和应用软件市场(例如,Google Play)的开放性给开发者和用户带来便利的同时,也隐藏着各类安全隐患。研究表明,Android应用软件的安全问题给用户带来了经济损失、隐私泄露等不良后果。本文基于Android安全机制和组件通信机制研究应用软件权限提升攻击这一类安全问题,提出了基于环境的权限提升攻击漏洞静态检测框架。我们以用户手机的整个Android系统为研究背景,以系统中所有的第三方应用软件为检测对象,在应用软件源代码和配置文件中查找应用程序组件之间的通信链路。此外,我们通过详细分析权限提升攻击的典型特征,提出四条判断通信链路是否存在权限提升攻击风险的基本原则。最后,我们实现了基于环境的权限提升攻击漏洞静态检测框架,并设计了两类实验,分别验证四条本原则的合理性和静态检测框架的有效性。同时,我们的实验还指出:与众多常见的Android系统安全软件和杀毒软件相比,我们的静态检测框架可以检测出前者不能发现的安全漏洞和隐患,进一步体现了本文工作的价值。
[Abstract]:With the development and wide application of information technology, modern people rely more and more on mobile smartphones to store and process personal information. As we all know, the smart operating system is the soul of the smartphone. It is the foundation of the success of the smartphone. Android is currently the most popular smart operating system on the market. Android platform and application software market (such as the openness of, Google Play) bring convenience to developers and users, but also hide all kinds of security risks. The research shows that the security problems of Android application software bring users economic loss, privacy disclosure and other adverse consequences. In this paper, based on Android security mechanism and component communication mechanism, the security problems of application software privilege escalation attack are studied, and a framework for static detection of privilege escalation vulnerabilities based on environment is proposed. We take the whole Android system of the user's mobile phone as the research background, take all the third party application software in the system as the detection object, and find the communication link between the application components in the application source code and the configuration file. In addition, by analyzing the typical characteristics of privilege escalation attacks in detail, we propose four basic principles for judging whether there is a risk of privilege escalation attacks in communication links. Finally, we implement the environment based static detection framework for privilege escalation attacks, and design two kinds of experiments to verify the rationality of the four principles and the validity of the static detection framework. At the same time, our experiment also points out that compared with many common Android system security software and antivirus software, our static detection framework can detect the security vulnerabilities and hidden dangers that the former can not find, which further reflects the value of the work in this paper.
【学位授予单位】:国防科学技术大学
【学位级别】:硕士
【学位授予年份】:2016
【分类号】:TP309;TP316
[Abstract]:With the development and wide application of information technology, modern people rely more and more on mobile smartphones to store and process personal information. As we all know, the smart operating system is the soul of the smartphone. It is the foundation of the success of the smartphone. Android is currently the most popular smart operating system on the market. Android platform and application software market (such as the openness of, Google Play) bring convenience to developers and users, but also hide all kinds of security risks. The research shows that the security problems of Android application software bring users economic loss, privacy disclosure and other adverse consequences. In this paper, based on Android security mechanism and component communication mechanism, the security problems of application software privilege escalation attack are studied, and a framework for static detection of privilege escalation vulnerabilities based on environment is proposed. We take the whole Android system of the user's mobile phone as the research background, take all the third party application software in the system as the detection object, and find the communication link between the application components in the application source code and the configuration file. In addition, by analyzing the typical characteristics of privilege escalation attacks in detail, we propose four basic principles for judging whether there is a risk of privilege escalation attacks in communication links. Finally, we implement the environment based static detection framework for privilege escalation attacks, and design two kinds of experiments to verify the rationality of the four principles and the validity of the static detection framework. At the same time, our experiment also points out that compared with many common Android system security software and antivirus software, our static detection framework can detect the security vulnerabilities and hidden dangers that the former can not find, which further reflects the value of the work in this paper.
【学位授予单位】:国防科学技术大学
【学位级别】:硕士
【学位授予年份】:2016
【分类号】:TP309;TP316
【相似文献】
相关期刊论文 前10条
1 袁萌;;Android计划为什么要悬赏1000万[J];信息系统工程;2007年12期
2 林耕宇;;观摩50名Google Android程序开发竞赛作品[J];电子与电脑;2008年08期
3 树子;;Android中文版不完全体验[J];互联网天地;2009年04期
4 Jason Whitmire;;产业软件专家如何协助解决Android的分裂困境[J];电子与电脑;2010年02期
5 蒋彬;;10款Android手机必备应用——Android操作系下的软件评测[J];微电脑世界;2010年04期
6 ;PCWorld Windows Phone 7挑战Android 毅然崛起的AndroidⅠ洗心革面的Windows Phone 7[J];微电脑世界;2010年08期
7 韩青;;Android平台发展的动力与挑战[J];中国电子商情(基础电子);2010年09期
8 方智勇;;Android手机这样用[J];电脑迷;2010年15期
9 缺少浪漫;;Android的另一面[J];电脑迷;2010年13期
10 ;ZTE and Three Release Android ,
本文编号:2316710
本文链接:https://www.wllwen.com/kejilunwen/ruanjiangongchenglunwen/2316710.html
