Android User Privacy Data Security Enhancement Based On The Binder Mechanism

With the intelligence and popularization of mobile devices, Android smartphones are becoming indispensable part of people’s life. However, because of the wide acceptance and security defects of Android system, it also becomes one of attacking targets of malicious software. Furthermore, this could be worsened by users’ lack understanding of the Android permission mechanism, which causes the leakage of privacy information. As a result, enhancing the security of Android system to protect user privacy data is becoming an important research topic.Firstly, the security mechanism of Android system, especially, the shortcomings and defects of Android, is introduced in this thesis. Then, we analyze the Binder inter-process communication mechanism in Android. Based on the binder mechanism, we design and implemente a user privacy data security enhancement system: MobileSafe. A layer of privacy protection mechanism based on the existing Android security system has been added, which inspects Binder communication and key method calls in relervant service requests. This added layer also checks the privacy permission in the package manager service. Though this system, users can configure each permission for each untrusting application and provide fake data to protect the real user information, which can solve the coarse-grained problem of Android security mechanism.This thesis makes a test of the MobileSafe system. MockDroid is an Android data protection system which relies on user preconfigured application permissions so as to effectively prevent the disclosure of user information. We evaluate the effectiveness of MobileSafe system by comparing with the MockDroid test results. The comparative analysis shows that MobileSafe system achieves the same effect with MockDroid in the privacy data protection. But MobileSafe make up the disadvantages of MockDroid which must rely on user to judge the safety of the application in advance and unable to provide a real-time bomb box function to obtain user selection. This thesis also evaluate the system performance loss, the test results show that the delay of response system service because of privacy protection mechanism is within 5ms and the magnitude of the performance loss is within acceptable range.