| With the rapid growth of demands to develop mobile applications,it becomes more and more popular to use html5 technology to the development of mobile applications,in order to meet the requirements of rapid iteration among versions and deployment on different platforms of an application.However,programming languages used to develop web applications can bring network security risks such as code injection into mobile applications and even make the problems severer compared with using them in web applications,because they could obtain more system privileges.Although many scholars have studied defending strategies to prevent the code injection on web platform,most solutions were not effective because they were designed by the framework based on web applications and mobile applications using html5 technology are more complicated compared with web applications.On the other hand,detecting methods aimed at original applications cannot find security risks in mobile applications based on html5,either.Under the circumstances,this paper proposes a security detecting system for mobile applications based on html5.This paper makes some improvements in traditional detecting methods on mobile applications and detecting methods on the web platform after enough research on them,and builds a new safety problem detecting system including static detecting and dynamic detecting.In this paper,the author studies the characteristics of mobile applications based on html5 and finds the safety risk firstly.Then improve the traditional detecting methods and propose a general detecting system for the new developing platform at the same time,which covers the disadvantages of detecting in a single way and incompatibility of applying detecting means on the web platform to the mobile platform.Static detecting mainly analyses javascript programming language to obtain the detecting result and dynamic detecting mainly detects the exceptions through the calls of the action sequence and produces an usability detecting system. |
PDF Full Text Request