Android广播机制安全性研究

doi:10.11959/j.issn.1000-0801.2016255

电信科学 ›› 2016, Vol. 32 ›› Issue (10): 27-35.doi: 10.11959/j.issn.1000-0801.2016255

• 专题：基于Android系统的终端安全 • 上一篇下一篇

Android广播机制安全性研究

卿斯汉^1,^2,³

¹ 中国科学院软件研究所，北京100190
² 北京大学软件与微电子学院，北京102600
³ 中国科学院信息工程研究所信息安全国家重点实验室，北京100093

出版日期:2016-10-15 发布日期:2017-04-27
基金资助:
国家自然科学基金资助项目

Research on Android security of broadcasting mechanism

Sihan QING^1,^2,³

¹ Institute of Software, Chinese Academy of Sciences, Beijing 100190, China
² School of Software and Microelectronics, Peking University, Beijing 102600, China
³ State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China

Online:2016-10-15 Published:2017-04-27
Supported by:
The National Natural Science Foundation of China

摘要/Abstract

摘要：

近年来，Android组件的安全性是研究热点，但作为Android四大组件之一的广播接收器，则鲜见有关其安全性的研究成果。在研究Android广播机制的基础上，对其安全结构与特点进行了深入分析。基于Android广播机制的安全挑战，针对性地给出相应的安全对策。最后，总结并展望今后的研究方向。

关键词: Android系统, 广播机制, 广播接收器, 恶意软件

Abstract:

In recent years, there has been increased interest in the research of Android component security. Broadcast receiver is one of the 4 components in Android, strangely enough, few papers have been published regarding to its security. Android broadcasting mechanism, and its security framework and features based on this were analyzed. According to the security challenges of Android broadcasting mechanism, the corresponding countermeasures and solutions were proposed. Finally, a summary of the results and the future research directions were given.

Key words: Android system, broadcasting mechanism, broadcast receiver, malware

卿斯汉. Android广播机制安全性研究[J]. 电信科学, 2016, 32(10): 27-35.

Sihan QING. Research on Android security of broadcasting mechanism[J]. Telecommunications Science, 2016, 32(10): 27-35.

图/表 4

表1

图1

表2

图2

参考文献 8

[1]	ENCK W , ONGTANG M , MCDANIEL P . Understanding Android security[J]. IEEE Security＆Privacy, 2009,7(1): 50-57.
[2]	ZHANG M , YIN H . AppSealer: automatic generation of vulnerability-specific patches for preventing component hijacking attacks in Android applications[C]// The 21st Network and Distributed System Security Symp（NDSS 2014）, February 23-26,2014, San Diego, California, USA.[S.l.:s.n.], 2014.
[3]	OCTEAU D , MCDANIEL P , JHA S , et al. Effective inter-component communication mapping in Android with epicc:an essential step towards holistic security analysis[C]// The 22nd USENIX Security Symp（USENIX 2013）, August 14-16,2013, Washington, DC, USA. New York:ACM Press, 2013.
[4]	CUI X M , YU D , CHAN P , et al. CoChecker: detecting capability and sensitive data leaks from component chains in Android[C]// The 19th Australasian Conf.（ACISP 2014）, July 7-9,2014, Wollongong, Australia.[S.l.:s.n.], 2014:446-453.
[5]	卿斯汉 . Android 安全研究进展[J]. 软件学报， 2016,27(1):45-71. QING S H . Research progress on Android security[J]. Research progress on Android security, 2016,27(1):45-71.
[6]	杜文涛 . Android 组件研究—广播接收器[EB/OL]. [2016-08-05]. . DU W T . Research on Android component-broadcast receiver[EB/OL] [2016-08-05]. .
[7]	HAMANDI K , CHEHAB A , ELHAJJ I H , et al. Android SMS malware: vulnerability and mitigation[C]// The 27th International Conference on Advanced Information Networking and Applications Workshops, March 25-28,2013, Barcelona, Spain. New York:ACM Press, 2013.
[8]	KIM D , RYOU J . SecureSMS: prevention of SMS interceptionon android platform[C]// The 8th International Conference on Ubiquitous Information Management and Communication （ICUIMC'14）, Jan 9,2014, Seam Reab, Cambodia. New York:ACM Press, 2014:485-487.

动作	说明
action_battery_changed	充电状态或电池电量改变
action_battery_low	电池电量低
action_boot_completed	系统完成引导过程，只广播
	一次
action_package_added	设备上安装了一个新的应
	用程序包
action_package_changed	已有的应用程序包发生变化
action_package_removed	已有的应用程序包已从设
	备中清除
action_timezone_changed	时区已经改变
action_time_changed	时间已经设置
action_time_tick	当前时间已经改变
action_wallpaper_changed	当前壁纸已经改变

广播类型	发送方法	是否有序	是否黏性
普通广播	sendBroadcast（）	否	否
有序广播	sendOrderedBroadcast（）	是	否
黏性广播	sendStickyBroadcast（）	否	是
黏性有序广播	sendStickyOrderedBroadcast（）	是	是

Android广播机制安全性研究

Research on Android security of broadcasting mechanism

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 4

参考文献 8

相关文章 7

Metrics

推荐阅读 0

[1]	李丽君,张福泉,刘鸿飞. 基于功率损耗均衡化控制机制的移动无线传感网数据传输算法[J]. 电信科学, 2018, 34(11): 1-9.
[2]	卿斯汉. Android安全的研究现状与展望[J]. 电信科学, 2016, 32(10): 2-14.
[3]	陈昊,卿斯汉. 基于组合式算法的Android恶意软件检测方法[J]. 电信科学, 2016, 32(10): 15-21.
[4]	杜雪涛,常玲,刘佳,张晨. 手机恶意软件网络行为分析[J]. 电信科学, 2015, 31(8): 171-174.
[5]	陈涛,高鹏,杜雪涛,薛姗,杨满智. 运营商恶意软件防护体系与关键技术研究[J]. 电信科学, 2014, 30(1): 83-88.
[6]	刘铮,王静. 移动办公在发电企业中的研究和应用[J]. 电信科学, 2013, 29(11): 115-121.
[7]	苏晓萍,宋玉蓉,申情,楼俊钢. 一种具有GAF分簇结构的无线传感器网络中恶意软件传播模型[J]. 电信科学, 2011, 27(8): 33-38.