摘要
Android系统作为智能手机最主要的操作系统之一,其最普遍的安全问题就是恶意应用的危害性行为。本文将根据Android系统的安全机制和应用植入方法的研究,实现一种基于ADB调试的植入漏洞利用,以使恶意代码在没有明显提示的情况下静默安装与运行。本文将提出相关的Android应用植入攻击整体流程模型,并对今后植入漏洞的利用趋势作出阐述,提出相关的Android安全机制改进建议。
The most common security problem of Android system-one of the primary operating systems of smart phone, is the harm- fulness of malicious application. According to the research of Android system security mechanism and application implantation, the ex- ploitation of vulnerability implantation based on ADB debugging is realized, thus to enabling the malicious code to complete silent in- staUation and operation without any obvious hint. In this paper, the overall process model of Android application attack implementation is proposed, the utilization trend of future implantation discussed, and the related improvement suggestion for Android security mecha- nism also presented.
出处
《信息安全与通信保密》
2015年第11期96-99,102,共5页
Information Security and Communications Privacy
基金
高级xxx技术研究(秘密级)
中国信息安全测评中心(No.CNITSEC-KY-2013-009/2)
