| In recent years,with the rapid development of mobile Internet,smart terminal has become the world's leading communications and internetworking tools,and the most important representative of the smart phone is a mobile terminal.As technology advances,the price of the mobile terminal is in constant decreased,the mobile device's operating system also presents flourishing scene,but since the advent of Android will gradually become the main mobile terminal operating system,Android phone is also present the highest market share of smart phones.However,due to the open-source characteristics of Android system,making the world anyone can develop their own Android applications,such a low threshold also makes Android application security has become a very important emerging field of information security issues.November 10,2009,the world's first Android malware-Mobil Spy advent,since then the attacks against the Android platform shows explosive growth like its market share.G-DATA security experts say,in the first quarter of 2015 found 440,267 kinds of new Android malware,that is,every 18 seconds there will be a new malware worldwide.In addition,April 25,2015,the world leader in Internet security technology,Symantec released the latest"Internet Security Threat Report",the report warns of the world,in all of the Android application,how much 17%(100 million)application is actually malware camouflage made,as opposed to 2013's 700,000 or so,the number of malicious software giant's Android platform,the speed of development should cause all of the safety concerns related employees.In order to solve the problem of Android platform application security,the most important and most critical is to curb the release of malicious software at the source,which requires the application of the mall can have a very high efficiency of malicious software detection mechanism,but this is now a lot of shops and do not do a good thing.So the main purpose of this paper is to realize a Android malware detection system which can be applied to the application store detection.In order to achieve this purpose,this has not done the work:Firstly,this paper studies the Android platform architecture and security architecture,analyzes the behavior characteristics of malicious software,and proposes a method to analyze the detection method of malicious software.Secondly,this method will analyze the Dalvik virtual machine instructions for data flow tracking sensitive character and function calls as the core part of the detection,and auxiliary to the application of the right analysis,signature matching and other detection means,can effectively find out the Android application software may exist malicious behavior.Thirdly,based on the above detection method,and with the help of Androidguard open source tools to achieve the principle,design and implementation of a static detection technology based on Android platform malware detection system.Finally,through the experimental test,it is proved that this method can effectively identify the malicious software and detect the malicious behavior in the range of reasonable false alarm rate.Compared with other detection methods,it is proved that the system has a great improvement in the detection rate and resource utilization. |
PDF Full Text Request