| As technologies evolve,mobile intelligent platforms have made substantial improvement in all kinds of hardware and software.The Android system has become the most important smartphone operating system because of its open source and freeness.From the developer's point of view,Android has a mature development community,Perfected development documents and powerful IDEs.The number of applications submitted by developers to the application market is huge.As a result,the impact of various security risks has gradually become prominent.In recent years,a series of serious privacy leaks from phone applications have caused adverse effects.This paper takes the user privacy data protection as the core content,from the developer's perspectives,detects the Android application source code,and implements and verifies the DroidPrivacyChecker detection system.DroidPrivacyChecker has been verified to run on Windows and Ubuntu systems.DroidPrivacyChecker now supports detection source code from Android Studio and Eclipse with ADT.It providing extensible detection rules and automatic analysis the Android system source code.Obtain implicit associations and privacy rights associations to update their detection rules.This paper presents a method to detect in AndroidManifest.xml and other files in the project to find the omissions or redundancies of the permission declaration.A static detection method for application runtime permission is proposed,and the speed is optimized by KMP algorithm.Experiments show that DroidPrivacyChecker can effectively detect the application source code in the user privacy leakage,and propose corresponding correction tips for the detected security risks.The system's false positive rate are less than 10%,and the detection speed of 100,000 lines of source code is less than three minutes,which significantly reduces the workload of developers on user privacy related codes.DroidPrivacyChecker achieves the expected effect.Figure 24;Table 9;Reference 54... |