A Study Of Android Vulnerability Detecting Tool Based On Lua Engine

With the development of android mobile devices, Android plays an important role in our daily life and has become the world-wide operating system. And it can not only be used in smart phones but also navigators, intelligent home appliances and so on. However, because of open-source and fragmentation of Android, malwares and vulnerabilities are increasingly exposed in Android and the detection of vulnerability and the defence of malware are pretty difficult to carry out. And hence they pose a great threat to individual privacy, mobile payment and so on. Therefore, we do the research on Android security and develop a tool which can detect the vulnerability in Android system based on Lua Engine. We finish the design of the tool and make it cover most of the Android vulnerabilities. The work we have done as follows. Firstly we summarize the typical Android vulnerabilities, classify these vulnerabilities and present the principle of every vulnerability. And it contributes to our design of the tool greatly. Secondly we transplant Lua engine in Android system in order that the tool has the features of scalability and efficiency. The features compensates the drawback of Trigger vulnerability database. Finally we finished the Android detecting tool which covered most of the Android vulnerabilities based on Lua engine, the modules and Android vulnerability detection scripts.The Android vulnerability dectecting tool based on Lua engine consists of three layers, the ruction of each layer as follows.1) Android vulnerability detection database layer. It consists of Version Comparison Database and Trigger Vulnerability Database. And the two databases are implemented with Lua scripts. Through version information and vulnerability exploit, the tool can detect the vulnerabilities in Android.2) Lua Engine Layer. For improving the efficiency and realizing the scalability of the android vulnerability dectecting tool, the Light weight Lua script engine is introduced. We analyzed Lua engine source code and separate this engine into three modules:data structure module, script execution core module and library management module. A script engine with high efficiency and scalability consists of less than 20 thousand C code. The slight programming engine matches most of demands in the tool.3) Lua Component. This feature of the Lua engine makes it possible that the tool can transplant Lua engine in Android system. Developers can deveplop their own component to match what they need to accomplish the vulnerability detection scripts.According to the test of our detecting tool, such as the detection in different Android versions and the efficiency in different engines, the results can prove that the detection of Android vulnerabilities has the accuracy and efficiency we expect. We also made a thoroughly study on the exposed vulnerabilities:analyzing the causing of these vulnerabilities, recurring the process of hacking, determining the specific method of detecting these vulnerabilities and finally complete the function of our detecting tool. And hence, the result shows that the vulnerability detecting tool is effective, stable and low consumption in Android.