| Smart phones have played an important role in people’s life since its design. In recent years, the system of smart phones develops very rapidly, espessially the Android system developed by Google. Among many smart phone platforms, Android platform has the most users and the highest occupancy. However, due to some flaws of Android system itself, malicious programs are flooding. This thesis is aimed to design and implement a software behavior analysis system for Android which is used to analyze the program’s behavior and do some risk rank.First, this thesis introduces the background and significance, and then this thesis introduces the Android system introduction, Android installation file analysis, Android security, static analysis method of Android software behavior, dynamic analysis method of Android software behavior and other related technical background. Followed by a detailed description of the requirements, then the outline design, the system is divided into nine modules:apk parsing module, dex analysis module, call analysis module, inject module, trigger module, behavioral analysis module, risk assessment module and logging module. After further detailed design were made for these modules. Finally, after the system is completed, a comprehensive test for this system is made. This thesis combines static analysis and dynamic analysis methods. It overcomes the defect of a single detection method and makes the processes systematic and structured so as to achieve high efficiency; high-quality software behavior analysis.Finaly a risk rank is made. If applied to the intelligent terminal security, this system can radically reduce the chance of malicious software user contact. It can also reduce the chance of user security be threatened. It will play an important role in the field of intelligent terminal security. |
PDF Full Text Request