Research And Realization On Android Application Security Protection

Come with the wide use of Android operating system and the mobile internet times, Security problems that Android application developers and users encounter are increasingly stark. Developers and users are bothered by Android security problems. Many applications running on Android are facing problems like infringing intellectual property rights, secondary packaging and reverse engineering. How to strengthen the security of the Android application has become a very important issues.Based on the background above, this thesis focuses on the security protection of Android application including the security vulnerabilities of Android operating system, the security weakness of Android application and anti-reverse engineering technique. In this thesis, the application protection scheme based on the Android platform starts from the perspective of the reverse engineering. According to the PC security protection experience and implementation, we put confusion, anti-compilation, dynamic loading, integrity checking, encryption, together and put forward multi-layers security protection measures. The security of the application on Android is improved comprehensively.The work of this thesis as follows:1. Illustrate the safety and the grim security situation of Android platform. Study the Android operating system architecture and the important technology of developing Android application. Focus on the Android security mechanisms, demonstrate the potential safety hazard of Android.2. Study the existing reverse technology, including its principle, tools and technical details. Put forward counter measures. Talk about the vulnerability of Android system. Through the weaknesses of Android security mechanism, this thesis will put up some technical keys that can prevent the reverse engineering which can modify the application.3. Encryption technology of application will be studied. Find the suitable encryption, decryption, data integrity algorithm because of limited hardware resources. Algorithm like AES, MD5, NTRU, SSL/TLS security protocol will be analysed. These encryption and decryption algorithms will be used in application security protection and development, to guarantee the application’s data, network communication safety.4. Put forward the packer and reinforcement technology of the Android application to improve the application’s ability of disassembly combined with encryption algorithm. Make the assembly tools or methods failure, or make these tools only work out little output. From the fundamental aspect, application’s data, users’ data, the security of network communication will be guaranteed.5. Based on the above scheme, this thesis work out some experimental analysis. Realize the protection scheme and carry out the detailed analysis on the implementation scheme, primarily analyses the ability of anti-reverse, data security and efficiency.