| Intelligent mobile phone plays an increasingly important role in our life,while the security problem of Android system equipped with intelligent mobile phone in access control is privilege escalation:Lower privileged applications can enhance the application's own access rights by accessing higher privileged applications,which destroys the privilege mechanism of Android.In order to defend the privilege escalation attack,this paper designs the scheme to prevent the privilege escalation attack.The specific work of this paper is as follows:1)this paper proposes a method for analyzing fine-grained permissions,previous studies on privilege escalation attacks are based on the permissions declared on the AndroidManifest file,this paper compares the permissions based on the component using in the running process,which reduces the false alarm rate and improves the accuracy.2)we designe a security container,which can install,run and uninstall applications in containers,customize security policies for security containers,and run security containers to solve the security risks of access control in Android native system.The application runs in the security container and gives the user warning hints when there is a privilege escalation vulnerability.The security container implemented in this paper is better practicality than the existing research work.The performance test shows that the performance of the safety container compared with the original system is almost the same in most cases of daily use. |
PDF Full Text Request