摘要
近年来,伴随着移动互联网和移动设备的飞速发展,移动APP成为了人们生产生活中不可或缺的一部分。用户通过证券行业APP进行投资、理财和资产管理等活动愈加普遍,大部分证券机构也都提供了线上渠道开展业务。证券行业APP在给大众生活带来方便快捷的同时,也带来了一些安全隐患。文章通过对证券行业APP网络安全现状进行调查研究,发现其存在高危漏洞、恶意应用感染、第三方SDK良莠不齐、越界索权等安全威胁,针对这些安全威胁,文章从多方面提出相应的安全建议,以期规范证券行业APP市场健康发展。
In recent years,with the rapid development of mobile Internet and mobile devices,mobile APP has become an indispensable part of people's production and life.It is more and more common for users to carry out investment,financial management and asset management activities through the securities industry APP,and most securities institutions also provide online channels to carry out business.The securities industry APP brings convenience to the public life,but also brings some security risks.Through the investigation and Research on the current situation of APP network security in the securities industry,this paper finds that there are security threats such as high-risk loopholes,malicious APPlication infection,mixed advantages and disadvantages of the third-party SDK,cross-border claims and so on.Aiming at these security threats,this paper puts forward corresponding security suggestions from various aspects in order to standardize the healthy development of APP market in the securities industry.
作者
袁方
赵甜
邱平文
韦安垒
Yuan Fang;Zhao Tian;Qiu Pingwen;Wei Anlei(CCID(Qingdao)Blockchain Research Institute Co.,Ltd.,Shandong Qingdao 266000;Institute of Cyberspace Security,CCID,Beijing 100846)
出处
《网络空间安全》
2020年第10期26-29,43,共5页
Cyberspace Security
关键词
证券行业
安全漏洞
APP安全
越界索权
securities industry
security breach
APP security
cross border claim