摘要: 为提高Android平台访问权限机制的安全性,提出一种基于Android平台的访问权限安全优化方案。将应用程序权限定向分为4类,获取不同权限组合的种类,量化其权限组合的安全威胁值,同时考虑免费应用程序更有可能是恶意程序的特点,通过应用程序权限安全威胁值判断其安全威胁级别。实验结果表明,该方案能有效区分应用程序的安全威胁级别,准确判断应用程序的安全威胁程度,提高Android访问控制安全性。
关键词:
Android平台,
访问权限,
权限分类,
权限组合,
安全威胁值,
定向分类
Abstract: To improve the problem of the security of Android access permission mechanism, this paper proposes an optimization scheme for access permission security based on Android platform. It divides the Android permission into four categories, acquires categories of different permission combination, quantifies the permission combination security threat values and takes fact that free applications are more likely for malicious applications than paid applications into consideration, for judging application security threat level by application access permission security threat value. Experimental results show that the permission access security mechanism can effectively detect security threat level of applications, judge the degree of application security threat more accurately and achieve the goal of enhancing the security of Android access control.
Key words:
Android platform,
access permission,
permission classification,
permission combination,
security threat value,
directional classification
中图分类号:
吴大勇, 郑紫微. 基于Android平台的访问权限机制优化方案[J]. 计算机工程, 2013, 39(5): 144-147.
TUN Da-Yong, ZHENG Zi-Wei. Optimization Scheme of Access Permission Mechanism Based on Android Platform[J]. Computer Engineering, 2013, 39(5): 144-147.