| With the rapid development of' mobile Internet, mobile applications bring great convenience to people's daily life. However, there has been more and more security threats and security incidents have increased year by year. As there is no organization to provide security authentication for mobile applications, the responsibility between application developers,application stores and users is fuzzy and there appears more and more responsibility disputes. As the primary access channel for mobile applications, application stores are responsible for the security reviews of their applications to ensure the quality of them. Therefore, the security authentication for massive mobile applications is an urgent problem for application stores.Mainstream security authentication technologies include digital certificate and digital signature. For digital certificate, both sides of communication need to obtain a certificate from the authority and save it locally, which increases the cost of maintenance. Compared to digital certificate, without the need for key agreement, plaintext encryption and digital certificate maintenance, the additional overhead of digital signature is small. Since the mobile applications maintained by the application stores have the characteristic of a large scale, from the point of limited physical computing resources, the use of digital certificate technology will increase the cost of security authentication. Therefore,the digital signature technology is more suitable for application stores and it is urgent to carry out in-depth research in the field of massive mobile application signatures. This paper mainly focuses on efficient signature technology for Android applications, scheduling for massive mobile application signature tasks and the enhancement of efficiency for large-scale application signatures. On this basis, this paper designs and implements a high-performance signature platform for massive mobile applications.The main work of this paper is based on the research of signature mechanism of Android mobile applications and the in-depth analysis of massive tasks' scheduling technology. Based on the practical problem about mobile application security authentication, this paper analyzes the current security situation of mobile applications. Combined with the requirements of application stores and the inefficiency of existing signature methods, this paper points out the necessity and significance of signing massive mobile applications. Based on the robustness of signature algorithms and the efficiency of signing, a signature method based on the quadratic signature is proposed, and then a signature engine is constructed on the basis of this method. It shortens the time required to sign a single APK file and improves the efficiency for signing. For the scenario of signing for large-scale mobile applications, based on the distributed architecture, this paper designs a task scheduling system for efficient scheduling of massive signature tasks. In this paper, an artificial fish swam algorithm based on the resource pool is proposed, which is applied to the signature platform to deal with the high complexity of massive mobile application signature tasks. Finally, a massive mobile application signature platform is designed and implemented, which proves to effectively improve the execution efficiency of the massive mobile application signature tasks by testing, analyzing and verifying the usability of the platform. |
PDF Full Text Request