摘要
为有效防止恶意应用程序泄露用户隐私数据,实现了一种面向Android手机应用程序的用户隐私保护系统,该系统由服务器端和客户端两部分组成,运用模块化设计方法实现了服务器安全化、手机端权限监控/控制、可信程度分析、隐私策略、日志监控、流量监控等模块,综合采用了细粒度权限管理、服务器加固、可信度统计、行为审计等权限管理机制,实现了用户隐私权限动态监控管理、可信度审计可视化、文本智能分析检测等功能。
To solve the problem that rogue applications disclose the personal privacy information,the protection system oriented to android application is implemented. The system consists of two parts,the server and agent. Module programming method is used in the design of server security module,authority management module,trusting analysis module,privacy strategies module,log monitoring module,flow monitoring module,and so on. At the same time,mechanisms of fine grit authority management,reinforcement of server,trusting analyis and behavior audit are used for functions,as follows the dynamics management of privacy authority,visualization of trusting audit,and intelligeng analysis and detection of texts. Performance test demonstrates the feasibility and vadility of the protection system presented.
作者
杨金宝
马宝泽
叶清
YANG Jinbao;MA Baoze;YE Qing(Department of Information Security,Naval University of Engineering,Wuhan 430033;Navy Staff of the Southern theatre Command,Zhanjiang 524000)
出处
《计算机与数字工程》
2019年第9期2206-2211,共6页
Computer & Digital Engineering
基金
博士后基金项目(编号:2012M512132)
总装预研基金项目(编号:9140A06040313JB11084)
信息保障技术重要实验室开放基金项目(编号:KJ-14-104)资助
