Towards Fast Repackaging and Dynamic Authority Management on Android  

作　　者：SONG Jun ZHANG Mohan HAN Chunling WANG Kaixin ZHANG Huanguo 

机构地区：[1]Computer School, China University of Geosciences [2]School of Computer, Wuhan University

出　　处：《Wuhan University Journal of Natural Sciences》2016年第1期1-9,共9页武汉大学学报（自然科学英文版）

基　　金：Supported by the National Natural Science Foundation of China(61303212,61332019,U1135004);the Hubei Provincial Natural Science Foundation of China(2014CFB192);the Fundamental Research Founds for National University,China University of Geosciences(Wuhan)(CUGL130234)

摘　　要：In order to enhance the security of Android applications, we propose a repackaging and dynamic authority management scheme based on Android application reinforcement methods Instead of using root privileges and system modification, we introduce a user-level sandbox, which utilizes the native C-level interception mechanism, to further reinforce the risk applications and improve the entire security of Android system. Additionally, by importing and improving the repackaging features, this proposed scheme reduces the potential risks of applications and achieves the goal of the dynamic monitoring of permissions. Finally, a comprehensive evaluation, including efficiency analysis and detection evaluation with 1 000 malwares, whose overall average success rate is about 96%, shows the feasibility and univer- sality of the proposed scheme.In order to enhance the security of Android applications, we propose a repackaging and dynamic authority management scheme based on Android application reinforcement methods Instead of using root privileges and system modification, we introduce a user-level sandbox, which utilizes the native C-level interception mechanism, to further reinforce the risk applications and improve the entire security of Android system. Additionally, by importing and improving the repackaging features, this proposed scheme reduces the potential risks of applications and achieves the goal of the dynamic monitoring of permissions. Finally, a comprehensive evaluation, including efficiency analysis and detection evaluation with 1 000 malwares, whose overall average success rate is about 96%, shows the feasibility and univer- sality of the proposed scheme.

关 键 词：Android security repackaging root privileges native C-level interception 

分 类 号：TP305[自动化与计算机技术—计算机系统结构]