Design And Implementation Of Android Access Control System Based On Multi-Policy

Android's widespread makes the deficiency of Android system more and more attention.Due to some security mechanisms in Android platform,which makes the simple permission mechanism is not sufficient to ensure the safety of mobile terminal software behavior.The traditional Android framework can not ensure that users use permission to access control resources.In view of Android security mechanism is not perfect,this paper expends the Android framework layer.RSBAC(rule set based access control)framework is introduced in Android framework to implement the multi-policy based access control system.First,sensitive API features are extracted by androgruad tool,from which we modeling.User-defined policy and context policy are set for restricting the application access to the sensitive API.Secondly,the information of application is extracted,such as the type of the application,the components information,from which we model and name the information as application state.Based on the application state,system policy is set for preventing privilege escalation attacks.Then an application sends a request,Android system will load algorithm for decisions.In the algorithm,the policies will load according to the object type.Finally,50 Android market applications and 118 malicious software are tested to verify When the application access request,Android system will run according to the type of policy will the request object loading algorithm for application requests accordingly,thus completing the framework layer API interface and communication behavior between applications access control.Finally,50 Android market applications and 118 malicious software have been tested by experimental verification of the correctness and effectiveness of the proposed system.This paper implements fine-grained access control,and for illegal communication between applications,users can configure a system policy to prevent illegal communications.By multi-policy mechanism,the system succeed in controlling application behavior,and implements a security,flexible access control system.