Design And Implementation Of Application Container Based On Android Virtual Machine

In recent years, along with the sharp increase in the number of smart phones, The number of mobile phone viruses is increasing. Mobile phone users are suffering from all kinds of malicious attacks in the case of no perception. Android smart phone provides a sandbox isolation mechanism,permissions mechanism, mandatory access control, full encryption and other security mechanisms in the operating system level to ensure the security of the platform. However, due to the lack of Android application market security norms and application developers lack security awareness and many other, Android system can not effectively protect the security of mobile phones.Firstly, this paper deeply analysis the operating principle of Android virtual machine and Android sandbox isolation mechanism, summarize the sandbox mechanism of security issues. Secondly, research the management mechanism of Android component life cycle, and develop the security model of component agent.Based on the security model of component agent ,This topic designed the application container program based on the Android virtual machine. Application container is an application APP in the application layer. First, a large number of proxy processes and proxy components are registered for the application container by inserting technology; secondly,the third party application program is loaded into the application container through dynamic loading technology, and the agent process and proxy components are assigned; in addition, establish Isolation of the run-time environment for the agent process by Hook technology , and ultimately form an application environment with isolation container.Based on the application container scheme, this paper implements an application container based on Android virtual machine. It can install, run third-party applications and applications within the application container and applications outside the container are independent of each other,without affecting each other. With the protection of application container, Applications can have a more stringent isolation environment,to avoid the interface hijacking and elevation of malicious attacks and so on.