Research And Implement Of Security Module For Android Application

Android grows with a rapid speed in recent years, not only leads the market share, but the quantity of apps has catched up with that of Apple Store. Meanwhile, a lot of securirty trouble caused by the open nature of Android and the character based on Java. Malicious applications, trojan and virus, remaking applications has increased yearly, which do harms with users’privacy and property, and impacts the property and reputation of developers. With poor regulation of Android markets, as well as the traditional protection does not apply to the Android apps, therefore we have to search for a new technological approach to fix the trouble. As we mentioned above, the applications can be devided into two parts. One is local applications and the other is end-to-end applications. We provide different protection approaches for these two classes.For local applications, we still divided them into security reinforcement for DEX files and protection for SDK files according to the compositon. We raise the memory loading and non-memory loading for DEX protection after researching the open source of Android as well as the limitations. As there is no research about SDK protection, we catch up with reflection mechanism and interface approach. With the protections, the applications can be prevented from attacking, especially for hacking in part.For end-to-end applications, especially for the ones which are accessed to some third-party open platforms, we provide with a protection based on the mechanism of OAuth. Different protections are for different business procedures that we manually divide into, aiming at preventing from information leak while communicating by end to end and local data stolen. Further more, the framework of security middleware is designed to be light-duty with good extension. Besides, the middleware can also be reinforced by local application protection.We finally fix the cracking threats for both parts by using the security protection mentioned above. Also, descriptions for effect, universality and performance are given by tests.