智能手機(jī)已經(jīng)成為人們生活的主要部分,Android占據(jù)全球大部分市場份額,超過36%。但是,Android系統(tǒng)面臨隱私泄露的嚴(yán)重問題,現(xiàn)有的權(quán)限機(jī)制很難保護(hù)用戶的隱私數(shù)據(jù)不被惡意代碼竊取。論文提出了一種面向Android應(yīng)用程序的基于靜態(tài)污點分析的上下文敏感隱私泄露方法,基于跨方法控制流圖（ICFG）定位并跟蹤污點源（Source）和敏感調(diào)用點（Sink）,針對直接泄漏、傳遞變量和方法調(diào)用三種情況進(jìn)行污點分析。基于Java優(yōu)化框架SOOT實現(xiàn)系統(tǒng)原型,針對DroidBench的實驗結(jié)果表明了該方法的有效性 

【文章來源】：江西師范大學(xué)江西省

【文章頁數(shù)】：44 頁

【學(xué)位級別】：碩士

【文章目錄】：
Abstract
摘要
Acknowledgements
Abbreviations
Chapter 1 Introduction
    1.1 Motivation
    1.2 Background
    1.3 Current Problems
    1.4 Objective
    1.5 Related work
    1.6 Thesis Structure
Chapter 2 Thesis Background
    2.1 Android Overview
        2.1.1 Android Operating System
        2.1.2 Android Application Package
    2.2 Concepts
        2.2.1 Program Analysis
        2.2.2 Analysis Techniques
        2.2.3 Taint Analysis
    2.3 Tools
        2.3.1 Soot Framework
        2.3.2 Flow Droid
    2.4 Intermediate Representation
Chapter 3 System Design
    3.1 Preparing Input
        3.1.1 APK Backup
        3.1.2 Sensitive Sources
    3.2 Design
    3.3 Algorithm
    3.4 Summary
Chapter 4 Implementation and Experiment
    4.1 Implementation
    4.2 Experimental Environment
    4.3 Experimental Results
        4.3.1 Droid Bench
        4.3.2 Real Applications
    4.4 Summary
Chapter 5 Conclusions
References



本文編號：3490311