| 基于 Android 源码的应用安全提升研究与实践 |
| |
| 引用本文: | 吴一鸣.基于 Android 源码的应用安全提升研究与实践[J].教育技术导刊,2020,19(6):253-256. |
| |
| 作者姓名: | 吴一鸣 |
| |
| 作者单位: | 南方电网广西电网公司 计量中心,广西 南宁 530023 |
| |
| 摘 要: | Android 生态系统未加限制地应用安装权限存在巨大安全隐患问题。对此提出修改 Android 系统源代码,实现比对 apk 格式文件包含的公钥信息、确认文件来源安装权限的安全提升方案。该方案充分满足 Android 生态系统对恶意代码防范的信息安全要求。操作系统定制功能更符合业务需求,可作为深度定制版本的移动智能操作系统。实践结果达到预期,未经认证的应用无法安装,提升了 Android 源码的安全性。
|
| 关 键 词: | Android 系统 恶意代码 源码安全 |
| 收稿时间: | 2020-01-05 |
Research and Practice of Applications Secure Improvement Based on Android Source Code |
| |
| WU Yi-ming.Research and Practice of Applications Secure Improvement Based on Android Source Code[J].Introduction of Educational Technology,2020,19(6):253-256. |
| |
| Authors: | WU Yi-ming |
| |
| Institution: | Measurement Center,Guangxi Power Grid Corporation of Southern Power Grid,Nanning 530023,China |
| |
| Abstract: | Aiming at the problem of huge security risks of the unrestricted application installation permissions of the Android ecosystem,this paper proposes to modify the Android system source code to compare the public key information contained in the apk format file and confirms the installation permission security of the file source. The practical results achieved the desired results,and uncertified applications could not be installed. The research results fully meet the information security requirements of the Android ecosystem against application malicious code prevention. For actual application scenarios,the development of the operating system level is deeper and more direct,and the operating system customization functions are more in line with business requirements,which can be used as a deeply customized version of mobile intelligent operating system. |
| |
| Keywords: | Android system malicious code source code security |
|
| 点击此处可从《教育技术导刊》浏览原始摘要信息 |
| 点击此处可从《教育技术导刊》下载免费的PDF全文 |
