Research On Privacy Protection Method Based On Android Authority Mechanism

The Android smart phone has become indispensable in people's daily life,but the characteristics of its own open source,the Android system subjected to the threat of more malicious behaviors,which gets user privacy of malicious behavior accounted for the majority,attracts more and more attention of researchers at home and abroad.At present,most of the existing solutions for protecting privacy in the Android platform complete scheme by expanding and modifying the system of Android itself,but since this will give the system operation bring great instability.Therefore,this article proposes the model of privacy protection named PRIMOD which combines the privacy leak detection and application of reinforcement.Main research work has the following aspects:First of all,this paper analyzes the Android platform,including the system structure and application components,and analyzes the security mechanism and vulnerability of the system itself.In addition,this paper selects 3 typical privacy protection solutions for in-depth study,and sums up the shortcomings of the existing solutions.Secondly,the detailed design of the privacy protection model proposed in this paper mainly includes 3 modules.(1)privacy leak detection module:de-compile the APK files to the application.Then this model does the static analysis through control flow graph and data flow diagram.In order to obtain the report of leaks of privacy,it must to be done by API permission mapping table.(2)reinforcement module:modify the smali file,and add privacy reinforcement library,using re-packaging technology will code re compiled can be installed APK file,make applications run to get permission setting module monitoring.After re-packaging,it must ensure that the correct installation and operation.(3)permission settings module:users can according to privacy report for the application for permission setting up fine-grained condition,at the same time the module using HashMap data structure will set conditions for storage,when running the application requires permission is the module of the audit,then according to the user choice response,so as to achieve the purpose of privacy protection.Finally,according to the privacy protection model proposed in this paper,the experimental evaluation of the various modules of functional testing,and analysis of the results of the test results,the validity of the conclusion.