基于动态程序切片和污点分析的安卓应用隐私泄露检测  

作　　者：汪全盛 王田田 马锐 张迎周 WANG Quansheng;WANG Tiantian;MA Rui;ZHANG Yingzhou(School of Computer Science,Nanjing University of Posts and Telecommunications,Nanjing 210023,China;School of Cyber Science and Engineering,Southeast University,Nanjing 211189,China)

机构地区：[1]南京邮电大学计算机学院、软件学院、网络空间安全学院,南京210023 [2]东南大学网络空间安全学院,南京211189

出　　处：《小型微型计算机系统》2025年第3期704-712,共9页Journal of Chinese Computer Systems

基　　金：国家自然科学基金项目(62272214)资助.

摘　　要：污点分析是检测Android应用程序隐私数据泄露的有效手段,静态污点分析不直接运行程序,容易产生较高的误报率.本文提出以动态程序切片指导静态污点分析的Android应用隐私泄露检测方法.首先对Android应用程序进行静态污点分析,输出以污点源与污点汇聚点信息标注的潜在泄露数据流,再对源代码的中间表示进行静态插桩,通过实际场景中的动态运行获取代码基本块执行路径,根据污点分析及动态执行结果制定切片准则,并采用后向程序切片对信息流进行二次处理以降低假阳性.本文根据提出的方法实现了原型工具并进行了实验验证.实验使用了2个不同的测试集,分别为DroidBench和TaintBench.实验结果表明:引入动态程序切片技术能够有效降低静态污点分析的误报,本文提出的方法能够减少70.3%的误报率.Taint analysis is an effective technique of detecting privacy data leakage in Android applications.Static taint analysis does not directly run the program and is prone to high false positive rates.This paper proposes an Android application privacy leak detection method that uses dynamic program slicing to guide static taint analysis.The method first performs static taint analysis on Android applications and outputs potential leakage data streams labeled with source and sink information,then performs static instrumentation of the intermediate representation of the source code,obtains the execution paths of basic blocks of code through dynamic running in actual scenarios,and formulates slicing criteria based on taint analysis and dynamic execution results,finally uses backward program slicing for secondary processing of information flows to reduce false positives.This paper implements a prototype tool according to the proposed method and conducts experimental verification.The experiment uses two different benchmark suites,namely DroidBench and TaintBench.Experimental results show that the introduction of dynamic program slicing technology can effectively reduce the false positive of static taint analysis.The method proposed in this article can reduce the false positive rate by 70.3%.

关 键 词：污点分析 动态程序切片 Android隐私泄露 数据流处理 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]