An application rewriting method and system for detecting android privilege escalation attacks

An application program and privilege escalation technology, which is applied in the fields of computer security and mobile security, can solve the problems of difficult deployment of detection methods, and achieve the effects of strong effectiveness, threat prevention, and easy deployment
CN104102880BActive Publication Date: 2016-10-05HUAZHONG UNIV OF SCI & TECH
4 Cites 2 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
HUAZHONG UNIV OF SCI & TECH
Publication Date
2016-10-05

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention discloses an application rewriting method for detecting Android privilege elevation attack. The method comprises the steps: performing decompilation on an Android application uploaded by a user to generate an intermediate file and an application configuration file; inserting a call-link building code to the generated intermediate file, so that a call link is automatically built during the running of the application; inserting a call-link acquiring code to the generated intermediate file, so that the call link sent by a calling program is automatically acquired during the running of the application; inserting a detection code to the generated intermediate file, so that whether the privilege elevation attack exists or not is automatically judged when the application accesses sensitive resources of a system; packaging the modified intermediate file and the application configuration file into a new application and signing the generated application, so that the application can be installed into mobile equipment. By adopting the application rewriting method, Android system source codes can be effectively prevented from being modified, so the method can be more easily adopted by common users.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention belongs to the fields of computer security and mobile security, and more specifically relates to an application program rewriting method and system for detecting Android privilege escalation attacks. Background technique

[0002] In recent years, smart terminals have been widely popularized around the world, especially the smart terminals represented by Google's Android system and Apple's iOS system. According to Gartner's report, in the first quarter of 2012, mobile phones with Android and iOS systems accounted for 79% of the total global smart phone market, of which mobile phones with Android system accounted for 56%. Due to the high market share of Android and the open source code of the system, this patent is aimed at mobile terminals with the Android system which are more popular at present. With the popularity of Android smart terminals, malicious codes targeting Android systems are also increasing. According to the latest Kaspersk...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More