本文選題：Android軟件安全　切入點：代碼混淆　出處：《西北大學》2017年碩士論文

【摘要】：隨著智能手機的發(fā)展,全球Android應用程序的年下載量超過3000億次。然而,在應用爆發(fā)式增加的同時,其自身所遭受大量的二次打包、代碼注入等非法攻擊也越來越多。因此,研究一種有效的保護方法勢在必行,眾所周知代碼混淆是最有效的保護方法之一。已有的Android應用代碼混淆保護方法分為兩大類:一種是基于Java源碼進行混淆處理,但是這種方法不能保護開發(fā)商的知識產(chǎn)權(quán);另外一種是基于Android bytecode指令的混淆,這種方法并沒有提供復雜的數(shù)據(jù)流混淆和控制流混淆相結(jié)合的技術(shù)。本文提出一種基于bytecode混淆的Android應用保護方法,該方法不僅不需要提供應用程序源代碼和修改虛擬機解釋器,而且還增加了逆向工具進行逆向分析時的難度。本文主要研究工作包括四個方面:1)針對近年來出現(xiàn)的大量逆向工具能夠輔助攻擊者非法獲取應用程序關(guān)鍵代碼的問題,提出了混淆代碼中變量的存儲方式和函數(shù)調(diào)用的返回值獲取方式的數(shù)據(jù)流混淆方法,經(jīng)過該方法加固后的應用程序是不易被逆向的。2)為了進一步增加逆向工程的難度,本文還結(jié)合了控制流平展技術(shù)和路徑模糊技術(shù)來增加應用程序的控制流復雜度。3)本文詳細的分析解釋了 Android運行時系統(tǒng)對于bytecode運行之前的靜態(tài)分析檢測原理,根據(jù)這個檢測機制的漏洞解決了這個寄存器類型沖突問題。4)設(shè)計并實現(xiàn)了基于bytecode混淆的Android應用保護系統(tǒng)DexPro,通過選取常用的算法作為混淆測試的實例,對其加固前后的代碼大小和性能消耗進行了對比分析。實驗結(jié)果表明該混淆方法對于保護Android應用軟件是有效且實用的。
[Abstract]:With the development of smartphones, Android applications worldwide have been downloaded more than 300 billion times a year. However, with the increase of application exploits, the number of illegal attacks such as secondary packaging, code injection and other illegal attacks is increasing. It is imperative to study an effective protection method, and it is well known that code confusion is one of the most effective protection methods. Existing Android application code obfuscation protection methods can be divided into two categories: one is based on Java source code confusion processing, But this approach does not protect developers' intellectual property rights; the other is confusion based on the Android bytecode directive. This method does not provide a complex technique of data stream confusion and control flow confusion. In this paper, a Android application protection method based on bytecode obfuscation is proposed. This method not only does not need to provide the source code of the application and modify the virtual machine interpreter. This paper mainly includes four aspects: 1) aiming at the problem that a large number of reverse tools can assist an attacker to obtain the key code of an application illegally in recent years. In order to increase the difficulty of reverse engineering, the method of obfuscation of data flow between the storage of variables in the obfuscation code and the method of obtaining the return value of the function call is proposed. The application program strengthened by this method is not easily reversed. 2) in order to further increase the difficulty of reverse engineering, This paper also combines the control flow flattening technology and the path fuzzy technology to increase the complexity of the control flow of the application. 3) this paper analyzes and explains the static analysis and detection principle of the Android runtime system before the bytecode runs in detail. According to the flaw of the detection mechanism, the register type conflict problem is solved. (4) the Android application protection system based on bytecode confusion is designed and implemented, and the common algorithm is selected as the example of confusion test. The code size and performance consumption before and after reinforcement are compared and analyzed. The experimental results show that the confusion method is effective and practical in protecting Android application software.
【學位授予單位】：西北大學
【學位級別】：碩士
【學位授予年份】：2017
【分類號】：TP316;TP309

【相似文獻】

相關(guān)期刊論文 前10條

1 袁萌;;Android計劃為什么要懸賞1000萬[J];信息系統(tǒng)工程;2007年12期

2 林耕宇;;觀摩50名Google Android程序開發(fā)競賽作品[J];電子與電腦;2008年08期

3 樹子;;Android中文版不完全體驗[J];互聯(lián)網(wǎng)天地;2009年04期

4 Jason Whitmire;;產(chǎn)業(yè)軟件專家如何協(xié)助解決Android的分裂困境[J];電子與電腦;2010年02期

5 蔣彬;;10款Android手機必備應用——Android操作系下的軟件評測[J];微電腦世界;2010年04期

6 ;PCWorld Windows Phone 7挑戰(zhàn)Android 毅然崛起的AndroidⅠ洗心革面的Windows Phone 7[J];微電腦世界;2010年08期

7 韓青;;Android平臺發(fā)展的動力與挑戰(zhàn)[J];中國電子商情(基礎(chǔ)電子);2010年09期

8 方智勇;;Android手機這樣用[J];電腦迷;2010年15期

9 缺少浪漫;;Android的另一面[J];電腦迷;2010年13期

10 ;ZTE and Three Release Android ，

本文編號：1672837