Application rewriting method and system for detecting Android privilege elevation attack

An application program and privilege escalation technology, applied in the field of computer security and mobile security, can solve problems such as difficulty in the deployment of detection methods, and achieve the effect of strong effectiveness, easy deployment, and threat prevention.

Active Publication Date: 2014-10-15
HUAZHONG UNIV OF SCI & TECH
View PDF4 Cites 17 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In view of the above defects or improvement needs of the prior art, the present invention provides an application rewriting method and system for detecting Android privilege escalation attacks. Difficult technical issues with deploying

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Application rewriting method and system for detecting Android privilege elevation attack
  • Application rewriting method and system for detecting Android privilege elevation attack
  • Application rewriting method and system for detecting Android privilege elevation attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0056] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention. In addition, the technical features involved in the various embodiments of the present invention described below can be combined with each other as long as they do not constitute a conflict with each other.

[0057] The general idea of ​​the present invention is: decompile and analyze the application program through the application market, insert the call chain construction code and the call chain detection code into the application program, so as to effectively track the inter-program communication and the application program to the application program during the running process of the application pr...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an application rewriting method for detecting Android privilege elevation attack. The method comprises the steps: performing decompilation on an Android application uploaded by a user to generate an intermediate file and an application configuration file; inserting a call-link building code to the generated intermediate file, so that a call link is automatically built during the running of the application; inserting a call-link acquiring code to the generated intermediate file, so that the call link sent by a calling program is automatically acquired during the running of the application; inserting a detection code to the generated intermediate file, so that whether the privilege elevation attack exists or not is automatically judged when the application accesses sensitive resources of a system; packaging the modified intermediate file and the application configuration file into a new application and signing the generated application, so that the application can be installed into mobile equipment. By adopting the application rewriting method, Android system source codes can be effectively prevented from being modified, so the method can be more easily adopted by common users.

Description

technical field [0001] The invention belongs to the fields of computer security and mobile security, and more specifically relates to an application program rewriting method and system for detecting Android privilege escalation attacks. Background technique [0002] In recent years, smart terminals have been widely popularized around the world, especially the smart terminals represented by Google's Android system and Apple's iOS system. According to Gartner's report, in the first quarter of 2012, mobile phones with Android and iOS systems accounted for 79% of the total global smart phone market, of which mobile phones with Android system accounted for 56%. Due to the high market share of Android and the open source code of the system, this patent is aimed at mobile terminals with the Android system which are more popular at present. With the popularity of Android smart terminals, malicious codes targeting Android systems are also increasing. According to the latest Kaspersk...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56G06F9/44
CPCG06F21/566
Inventor 金海邹德清王代斌徐鹏羌卫中陈刚
Owner HUAZHONG UNIV OF SCI & TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap