Design And Implementation Of Android Sandbox On Virtualization And Redirection Technology

With the dramatic increase of market share of Android operating system,the sources and types of applications on the Android operating system are diversified and the degree of safety of the applications is not guaranteed,and the malicious programs take advantage of the opportunity to make the mobile terminal security threatened.Enterprise mobility management(EMM)is derived from various enterprises for mobile security needs,the core of its technology is sandbox,but most of the current Android sandbox for dynamic analysis of malware behavior.In view of the above problems,this paper,based on the Android system as a learning platform,puts forward the Android sandbox based on virtualization and redirection technology through the study of PC sandbox and Hook technology,not only can the company provide centralized management and control platform technical support,but also provide a lot of data support for the research field of software behavior analysis.The specific research contents and achievements are as follows:(1)In-depth study of the Android system architecture and its main security mechanisms,so as to have an overall understanding of the Android system,based on the existing plug-in technology,based on the idea of the use of Hook mechanism,through the full study of the source code,the Hook Intercept the location and try to implement the"installation" of the application and the installation package in this sandbox so that the application can be dynamically monitored without actually installing the application,and use the generated various behavior logs for software behavior analysis;(2)In view of the difference of the preservation of the applications opened in the sandbox,after studying the page replacement algorithm,we propose an algorithm which is combined with the reservation necessity of the occupancy process,and apply it to process management;(3)For various types of file data generated by the Android application run,this article supports different policy configurations based on different states of file data,including file access control policies and file encryption policies,with the support of virtual and redirection technologies.The relative isolation of applications inside and outside the sandbox makes the file data security of the sandbox safe.The sandbox combines virtual and redirection technologies designed and implemented in this paper.It uses source code to select Hook points,provides enterprises with centralized management and control platform support for shareable technologies,and combines file data protection with file data encryption policies and file access control.Strategy configuration has made further operations to ensure the security of document data,which has important research significance and practical value.