本文選題：Android + 安全套接層�。� 參考：《北京郵電大學(xué)》2014年碩士論文

【摘要】：Android已經(jīng)成為世界上最常用的智能機(jī)操作系統(tǒng),它使用SSL協(xié)議來保護(hù)數(shù)據(jù)通信,但是如果不充分或不正確使用SSL,就會(huì)導(dǎo)致Android應(yīng)用程序容易受到中間人攻擊。本文從移動(dòng)設(shè)備出發(fā),對(duì)Android系統(tǒng)中的SSLStrip中間人攻擊進(jìn)行了研究,并在此基礎(chǔ)上提出了一種防范的方案,能夠在移動(dòng)網(wǎng)絡(luò)環(huán)境下防止Android手機(jī)用戶受到SSLStrip中間人攻擊的目的。 本文首先分析了Android SSLStrip在移動(dòng)網(wǎng)絡(luò)環(huán)境下的攻擊原理和攻擊過程,研究了如何利用ARP欺騙對(duì)SSL進(jìn)行攻擊。然后針對(duì)ARP欺騙設(shè)計(jì)了一種SSLStrip中間人攻擊的防范方案,分別對(duì)該方案的服務(wù)器端和客戶端進(jìn)行了詳細(xì)的分析和設(shè)計(jì),對(duì)其有效性進(jìn)行了驗(yàn)證,并實(shí)現(xiàn)了客戶端的基本功能。 該方案需要確保路由器IP地址和MAC地址的可靠性,因此論文中擴(kuò)展了DHCP服務(wù)器的功能,通過DHCPACK消息將路由器的IP地址和MAC地址發(fā)送給DHCP客戶端。DHCP客戶端開發(fā)了一個(gè)基于Tcpdu imp的Android應(yīng)用,該應(yīng)用能夠抓取發(fā)送給它的報(bào)文,并將抓取到的報(bào)文保存到手機(jī)SD卡的一個(gè)pcap文件中,除此之外,還能利用JPCAP解析pcap文件,從中取出由DHCP服務(wù)器發(fā)過來的路由器IP地址和MAC地址,并將它們靜態(tài)綁定到手機(jī)的ARP緩存表中,以防止其他惡意主機(jī)對(duì)其進(jìn)行修改,從而實(shí)現(xiàn)在移動(dòng)網(wǎng)絡(luò)環(huán)境下防止受到SSLStrip中間人攻擊的目的。
[Abstract]:Android has become the world's most commonly used smartphone operating system, it uses SSL protocol to protect data communication, but if it is not fully or incorrectly used, it will lead to Android application vulnerable to man-in-the-middle attack.Based on the research of SSLStrip man-in-the-middle attack in Android system, this paper presents a scheme to prevent the Android mobile phone users from being attacked by the SSLStrip middleman in the mobile network environment.In this paper, firstly, the principle and process of Android SSLStrip attack in mobile network environment are analyzed, and how to use ARP spoofing to attack SSL is studied.Then a SSLStrip man-in-the-middle attack prevention scheme is designed for ARP spoofing. The server and client side of the scheme are analyzed and designed in detail. The validity of the scheme is verified and the basic functions of the client are realized.This scheme needs to ensure the reliability of IP address and MAC address of router, so the function of DHCP server is extended in this paper.The IP address and MAC address of the router are sent to the DHCP client by DHCPACK message. A Android application based on Tcpdu imp is developed, which can capture the message sent to it.In addition to storing the captured message in an pcap file of the SD card of the mobile phone, it can also parse the pcap file by using JPCAP, from which the IP address and MAC address of the router sent by the DHCP server can be extracted.They are statically bound to the mobile phone's ARP cache table in order to prevent other malicious hosts from modifying them so as to protect them from SSLStrip man-in-the-middle attack in the mobile network environment.
【學(xué)位授予單位】：北京郵電大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類號(hào)】：TP393.08;TP316

【參考文獻(xiàn)】

相關(guān)期刊論文 前1條

1 張恒伽;施勇;薛質(zhì);;基于SSLStrip的HTTPS會(huì)話劫持[J];信息安全與通信保密;2009年10期

，

本文編號(hào)：1750238