摘要
随着智能终端的日益普及,便捷易用的Android操作系统得到了广泛的使用。标准的Android安全架构ASF缺乏强有力的保护机制,而现有和正在研究的标准的Android安全加固技术都有一定片面性。TDSD-Droid通过吸收SELinux及其它Android安全加固技术优点,引入了基于内核的MAC机制;创新性地运用Flask访问架构实现了新的MMAC机制;创新性地实现了柔性安全策略FSP适配机制;创新性地实现了安全策略学习机制;同时基于TF智能卡实现了TDSD-Droid的完整性验证功能。TDSD-Droid为Android终端实现了一个上下一致、前后呼应的立体安全防御系统。
With the increasing popularity of intelligent terminals, convenient-to-use Android operating system has been widely used. The standard Android Security Framework is lack of strong protection mechanism, even the existing and developing security technology for standard Android are one-sided. TDSDDroid adopted the advantages of SELinux security enhancement and other Android security technology, and implemented a MAC mechanism in kernel, a new MMAC mechanism based on Flask access architecture, a novel Flexible Security Policy adaptation mechanism, an inno vative security policy learning mechanism, and a new integrity verification function based on TF smart card. It achieved a consistent three-dimensional security defense system for Android terminals from top to bottom.
出处
《计算机科学》
CSCD
北大核心
2013年第11A期228-234,250,共8页
Computer Science
关键词
安卓
安全加固
强制访问控制
自主访问控制
Android, Security enhancement, Mandatory access control ,Discretionary access control