Design And Implementation Of User Privacy Protection System Based On The Android Kernel

With the rapid development of mobile Internet, smart mobile devices havebecome essential equipment. Among the mobile operating system，because ofcharacteristics such as openness, ease of use, Android gets the favour of mobilephone manufacturers and users, so Android system has developed rapidly to becomefirst mobile operating system market share. In the rapid development, Androidsystem security has also been a severe test. Because of the development of Androidapplications low technical threshold and the market for third-party applications toreview applications more loose, there are a large number of malicious applicationsin the Android market. Because of Android system using broad permissionsmechanisms, after malicious application access to sensitive information permissions,they can call functions to get personal data and transfer through the network ortelephone communication. Therefore, in order to improve the security of theAndroid system, this paper presents a privacy protection system based on theAndroid kernel, and it can control the applications’ sensitive privileges, thusensuring the security of user privacy data.First, by studying the Android permission mechanism and understanding theprocess of grant application permissions, we implement the protection system ofaccess control functions. Users can use this feature to prohibit the application ofsensitive permissions, so that the application can not call the relevant function to getpersonal privacy data.Second, through the study of Netfilter/Iptables structure and communicationmechanisms in the Android system, and combined with the black/white list policy,we proposed and implemented a network firewall function and communicationcontrol feature for the Android system. The feature can control the applicationaccess2g/3g/WIFI network and communicate with blacklist number, thereby cuttingoff private data transmission channels.Finally, we prepared detailed test cases and test the function of the protectionsystem. The experimental results show that the user privacy protection system canprohibit sensitive permissions of applications, ban blacklist application accessnetwork and communication control functions, effectively protecting the user’s datasecurity.