| With the development of science and technology and the mobile Internet, more and more users use the mobile intelligent terminal, among which Android OS based on Linux kernel quickly seize the smart mobile phone market because of its open source. More and more users use the mobile phone, at the same time they will contact with more and more sensitive information. So some malicious third party software as well as some mobile phone virus use user’s operating system as a potential target for malicious software, however the elevation of privilege attacks in application layer and other security threats of Android also appear constantly, so that the mobile phone is with more and more dangerous.Although the Android system has some advantages of Linux system, and has a good safety management mechanism, but the system layer and the application layer security mechanism is not perfect. Therefore, in this paper, the security problems Android platform faced will be a research object, and then analyze its security from the following several aspects. At last, a security model is proposed to improve the security of Android.1、Analysis the system architecture, the inherent safety mechanism, code security, data security and the components security of Android combined with Linux operating system and its security model.2、For the Android original permission check mechanism, only at the time of installing application the system will enable access authorization, once the user install, all the permissions are allowed and cannot be modified; in addition, the protection of user’s privacy still exist flaw which easily cause the leakage of user’s privacy information.3、Put forward a security system which contains the permission management module and the application lock. The permission management module is the extension of the original permission check mechanism in Android, which makes the module to intercept permission before the original permission check mechanism. The extended module includes the permission check module, permission database module and the permission configuration module. As for the permission configuration module, it provides two ways of application to view and permission to view, and then the user can allocate the permissions dynamically. In addition, the module also has a function of adding trust to make the application not subject to permission constrain.4、For the protection of user’s privacy information, in order not to let others to open and operate the application on mobile phone, such as PayPal, photo albums, mail list, the paper adds a lock function for mobile phone applications. Users can put the applications wanted to protect into it and set a password, only the correct password can open the application and can also cancel the application lock. Finally, the improved scheme is verified by experiments.The innovation of this paper is:for permission management, it provides two kinds of view, one is application view, and the other is permission view. This way is user-friendly operation, clear and diversity; in addition, the paper also puts forward an application lock to manage the applications the users want to protect. |
PDF Full Text Request