检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]中国科学院声学研究所国家网络新媒体工程技术研究中心,北京100190 [2]中国科学院大学,北京100049
出 处:《计算机工程与设计》2016年第1期42-45,64,共5页Computer Engineering and Design
基 金:国家科技支撑计划课题基金项目(2012BAH73F01);中国科学院先导专项课题基金项目(XDA06040501)
摘 要:针对Android应用软件安全性问题,提出一种基于云端协同框架的轻量级安全检测方法。云端定义权限及权限组合的威胁度,通过分析不同类别的主流应用得到权限概率;终端以云端的计算结果为基础,对预安装的应用进行检测和威胁度计算;终端上传恶意应用的应用签名到云端,周期性地从云端下载安全信息文件。以视频播放类应用为例,选取用户数量超过10万的30个应用进行实验,成功检测到两个威胁度较高的应用,验证了该方案的有效性。For the security problem of Android applications,a lightweight security detection method based on cloud collaboration architecture was proposed.In the cloud,the threat degrees of permissions and combinations were defined,and permission probabilities were obtained through the statistical analysis of different categories of mainstream applications.On a terminal device,the threat degrees of applications were calculated with the results from the cloud.The signatures of malicious applications detected were uploaded to the cloud,and the security information file was periodically downloaded from the cloud.For an experiment,thirty video playback applications with more than 100000 users were selected and two applications with a high threat degree were successfully detected.Experimental results verify the validity of the method.
关 键 词:ANDROID平台 访问权限 权限组合 权限概率 应用威胁度 云端协同
分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.140.250.157