【摘要】：隨著Android操作系統(tǒng)的廣泛使用和移動互聯(lián)網(wǎng)時代的到來,Android系統(tǒng)的安全問題也不斷出現(xiàn),給用戶和開發(fā)者造成了許多困擾。Android應(yīng)用程序面臨著知識產(chǎn)權(quán)被侵犯、被二次打包、應(yīng)用程序遭逆向等安全問題。如何加強(qiáng)Android平臺上的應(yīng)用程序的安全性就成了一個非常重要的問題�；谏鲜霰尘�,本文將研究Android平臺的應(yīng)用程序的安全保護(hù)方案和技術(shù),并依此為最終目的。本文主要通過研究Android操作系統(tǒng)的安全弱點、Android應(yīng)用程序的安全弱點、Android應(yīng)用程序的逆向工程技術(shù)等,提出一個完整的安全保護(hù)方案。本文提出基于Android平臺的應(yīng)用程序安全保護(hù)方案,該方案從逆向工程入手,借鑒傳統(tǒng)PC端的安全保護(hù)技術(shù),結(jié)合Android平臺本身的特點,將混淆、防反編譯、動態(tài)加載、完整性校驗、加密等方面融合為一體,采用多層安全保護(hù)措施,全面提高了應(yīng)用程序的安全性能。本文的主要工作有:1.對Android系統(tǒng)的安全性以及其平臺的應(yīng)用程序的安全性做出闡述。研究Android系統(tǒng)的體系結(jié)構(gòu)和應(yīng)用開發(fā)的技術(shù)要點,包括Dalvik虛擬機(jī)和DVM指令、Dex文件和Dalvik字節(jié)碼、JNI技術(shù)等,重點分析Android應(yīng)用程序開發(fā)的技術(shù)要點,詳細(xì)闡述Android系統(tǒng)及其上的應(yīng)用程序的安全基礎(chǔ)。2.研究現(xiàn)有的逆向技術(shù),包括其原理、使用到的工具以及技術(shù)細(xì)節(jié),提出對這些工具和技術(shù)的“反制”措施,防范對Android應(yīng)用程序逆向工程的技術(shù)。研究Android的安全模型及其存在的安全隱患,重點關(guān)注Android安全機(jī)制的缺點,提出安全保護(hù)技術(shù)。3.分析加密、解密、數(shù)據(jù)完整性算法,找到適合有限資源條件下的加密、解密措施。分析包括AES、MD5、NTRU、SSL/TLS安全協(xié)議等已有的加解密算法,將加解密技術(shù)適用到Android應(yīng)用程序安全保護(hù)和開發(fā)中,保證應(yīng)用程序的數(shù)據(jù)、網(wǎng)絡(luò)通信、應(yīng)用程序的安全性。4.結(jié)合加密、解密算法,在此技術(shù)基礎(chǔ)之上提出針對Android平臺上的應(yīng)用程序的加殼、加固技術(shù)。旨在提高應(yīng)用程序的反匯編能力,使利用現(xiàn)有的反編譯、反匯編工具或方法失效,或只能較低程度的反編譯、反匯編,從最根本上保護(hù)應(yīng)用程序、用戶數(shù)據(jù)、網(wǎng)絡(luò)通信的安全性。5.Android平臺上的應(yīng)用程序的安全保護(hù)方案進(jìn)行實現(xiàn)。對實現(xiàn)方案進(jìn)行詳細(xì)分析,主要是在應(yīng)用程序的抗逆向能力、數(shù)據(jù)安全以及應(yīng)用程序的運行效率做詳細(xì)的分析。
[Abstract]:With the widespread use of the Android operating system and the arrival of the era of mobile Internet, the security problems of the Android system appear constantly, causing many troubles to the users and developers. Android applications are faced with intellectual property infringement and repackaged. The application suffers from security problems such as reverse. How to enhance the security of applications on Android platform has become a very important issue. Based on the above background, this paper will study the application security scheme and technology of Android platform, which is the ultimate purpose. This paper presents a complete security protection scheme by studying the security weakness of Android operating system, the security weakness of Android application, reverse engineering technology of Android application and so on. In this paper, the application program security protection scheme based on Android platform is put forward. This scheme starts with reverse engineering, draws lessons from the security protection technology of traditional PC terminal, and combines the characteristics of Android platform itself. It will be confused, decompiled, dynamically loaded, integrity checked. Encryption and other aspects are integrated and multi-layer security measures are adopted to improve the security performance of the application. The main work of this paper is as follows: 1. The security of Android system and the application program of its platform are expounded. This paper studies the architecture of Android system and the key technology of application development, including Dalvik virtual machine and DVM instruction, Dex file and Dalvik bytecode, JNI technology, etc. Android system and its application on the basis of security. 2. This paper studies the existing reverse technology, including its principle, the tools used and the technical details, and puts forward the "counter-measures" to these tools and technologies to guard against the reverse engineering technology of Android applications. This paper studies the security model of Android and its hidden dangers, focuses on the shortcomings of Android security mechanism, and puts forward the security protection technology. 3. Analysis encryption, decryption, data integrity algorithm, find suitable for limited resources under the condition of encryption, decryption measures. The existing encryption and decryption algorithms, including AES,MD5,NTRU,SSL/TLS security protocol, are analyzed. The encryption and decryption technology is applied to the security protection and development of Android application program, which ensures the application data, network communication and application program security. 4. Based on the encryption and decryption algorithm, the paper puts forward the technology of shell and reinforcement for the application program on Android platform. The aim is to improve the disassembly capability of applications, to invalidate existing decompilation, disassembly tools or methods, or to decompile, disassemble, and fundamentally protect application, user data, The security of network communication. The security protection scheme of application program on 5.Android platform is implemented. The implementation scheme is analyzed in detail, mainly in the application's anti-reverse ability, data security and application's running efficiency.
【學(xué)位授予單位】：電子科技大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2015
【分類號】：TP316;TP309

【參考文獻(xiàn)】

相關(guān)期刊論文 前2條

1 吳大勇;鄭紫微;;基于Android平臺的訪問權(quán)限機(jī)制優(yōu)化方案[J];計算機(jī)工程;2013年05期

2 李宇翔;林柏鋼;;基于Android重打包的應(yīng)用程序安全策略加固系統(tǒng)設(shè)計[J];信息網(wǎng)絡(luò)安全;2014年01期

相關(guān)碩士學(xué)位論文 前5條

1 楊勇義;基于Android平臺的軟件保護(hù)技術(shù)研究[D];北京郵電大學(xué);2012年

2 李勇;基于Windows平臺的目標(biāo)代碼混淆[D];電子科技大學(xué);2007年

3 鐘明林;基于Android智能手機(jī)平臺方案[D];山東大學(xué);2010年

4 楊博;Android系統(tǒng)下應(yīng)用程序的安全性研究[D];上海交通大學(xué);2013年

5 王舒;基于逆向工程的Android惡意代碼的研究實現(xiàn)與預(yù)防[D];電子科技大學(xué);2013年

，

本文編號：2400406