摘要
传统方法无法满足安卓移动终端动态操作加密需求,数据集内存在大量冗余数据,导致系统防护性能变差,为此,提出了面向安卓的移动终端操作系统防护技术。分析安卓移动终端操作系统及安全漏洞,从读取数据和OTCC算法两个方面设计终端可信引导流程,将读取到的数据存储到终端内存中,选择加密函数计算出密文。采用双层代码自修改技术,通过软件签名验证校验核心模块,防止出现模块丢失现象,由此完成操作系统防护。通过实验验证结果可知,该技术每组数据坐标点都不同,说明数据集内没有重复数据,能够满足安卓移动终端动态操作加密需求。
Traditional methods cannot meet the encryption requirements for dynamic operations of Android mobile terminals,and there are a large amount of redundant data in the data set,which leads to poor system protection performance.For this reason,an Android-oriented mobile terminal operating system protection technology is proposed.Analyze android mobile terminal operating system and security vulnerabilities,design terminal trusted boot process from two aspects of reading data and OTCC algorithm,store the read data into terminal memory,and select encryption function to calculate ciphertext.Double-layer code self-modification technology is adopted to verify the core module through software signature verification to prevent module loss,thus completing the protection of the operating system.Experimental verification results show that each set of data coordinate points of this technology are different,indicating that there is no duplicate data in the data set,which can meet the encryption requirements of android mobile terminals for dynamic operation.
作者
谢毅
XIE Yi(Ningde Power Supply Company,State Grid Fujian Electric Power Co.,Ltd.,Ningde 352100,China)
出处
《电子设计工程》
2021年第20期57-60,66,共5页
Electronic Design Engineering
基金
国家电网项目(SGFJND00HLXX2000682)。
关键词
安卓
移动终端
操作系统
防护技术
OTCC算法
Android
mobile terminals
operating system
protection technology
OTCC algorithm
