电信科学

• • 上一篇    下一篇

Android权限提升漏洞攻击的检测

沈才樑,唐科萍,俞立峰,樊甫伟   

  1. 浙江工业职业技术学院 浙江大学计算机科学与技术学院;浙江工业职业技术学院;浙江工业职业技术学院;丽水广播电视大学 杭州师范大学电子商务安全重点实验室
  • 出版日期:2012-05-15 发布日期:2012-05-15
  • 基金资助:
    浙江省自然科学基金资助项目(No.Q12G020083,No.Z12F020028,No.Y12A050021),广东省电子商务重点实验室开放基金资助项目(No.2011GDECOF07)

Android Privilege Escalation Vulnerability Attacks Detection

Shen Cailiang,Tang Keping,Yu Lifeng and Fan Fuwei   

  1. Zhejiang Industry Polytechnic College College of Computer Science and Technology, Zhejiang University;Zhejiang Industry Polytechnic College;Zhejiang Industry Polytechnic College;Lishui Radio and Television University, Key Lab of E-Business Security, Hangzhou Normal University
  • Online:2012-05-15 Published:2012-05-15

被引次数

111

摘要: 近年来,Android发展迅速,已成为当前全球智能手机操作系统市场的领导者。有关Android系统安全机制的研究具有非常明显的意义。首先,简要介绍了Android系统的安全机制,接着重点分析了Android 权限提升漏洞攻击原理,并提出了通过应用安装前的漏洞检测与运行时IPC监测两种方式提升Android应用防范权限提升攻击的能力。

Abstract: In recent years, the Android system developed rapidly. It has become the leader of the smart phone operating system. The research of Android security mechanisms is significant. This article briefly describes the security mechanisms of the Android system, and then introduces the principle of Android privilege escalation attacks, then give two methods——vulnerability detection before the application installed and IPC monitoring on runtime, to improve the capacity of preventing Android privilege escalation attacks.

No Suggested Reading articles found!