Research On Malicious Code Detection Technology Based On Android Platform

Mobile intelligent devices have entered into millions of households with the rapid development of mobile Internet, and Android system in the mobile device market is in far ahead of IOS, Windowsphone and other systems because of its excellent performance. At the same time, because of Android system open source, more and more Trojans virus makers turned to the Android platform. In recent years, a large number of Android malicious applications are exposed, and these malicious applications on the one hand has brought significant property damage to the users, on the other hand, increased users' privacy disclosure.To solve the safety issues existing on Android terminal devices, this paper uses Android system as the research platform, combines with the security framework and mechanisms on Android system, and analyzes lots of Android malicious codes deeply, then designed and implemented a set of efficient and feasible Android malware detection programs, specific contents and results are the following four points:1. In this paper, we studied the system architecture and security model of Android, and collected a large number of Android malware samples, and analyzed the typical malicious applications. The above work provides theoretical basis and data supports for the research work in the future.2. According to Android malware samples collected, we has built a database of malicious code characteristics, and this database can achieve the management and usess of malicious code samples, providing data support for the realization of the following characteristics detection module.3. In this paper, we studied the current mainstream static detection,dynamic technology, and we utilize decompilation tool to achieve reverse analysis of the apk file, including the dex files. The above work provides technical support for the static detection module. In addition, the study of monitor API interception technology and frequent sequence mining algorithms provides a theoretical basis for dynamic detection module.4. In this paper, we proposed an efficient and feasible dynamic and static detection scheme. According to this scheme, we hava built a web system online which is for users to detect malicious codes in the apk package, and we have developed Android terminal detection system for detecting security of Android terminal apps.The results of this research work provide specific solution ideas and solutions to detect apk installer and Android terminal application security,so it has important application value and significance.