Method for solving phishing attack of Android platform

Abstract

The invention discloses a method for solving a phishing attack of an Android platform. The method comprises the steps of classifying a mobile phone application except for a system application into a plurality types of protection applications by a user according to the safe and sensitive degree; when the user starts one application, firstly judging whether one protected application is started by the system, starting a recognition and interception module according to the judgment result and the category of a to-be-started application and determining whether the application is permitted to be started, if so, carrying out identity recognition on the application, arranging a protective flag bit according to the category of the application, and determining whether the application is protected by the system according to the protective flag bit. According to the method, the recognition and interception module is additionally arranged to an application management system (AMS) of a system framework layer, so that the problem that as the application layer cannot intervene with the AMS flow, the phishing application cannot be intercepted is solved; meanwhile, a multi-level protection scheme is provided for the user to customize; the safety of the mobile phone during use of the user is effectively ensured.

Description

Technical field [0001] The invention relates to a software technology, in particular to a method for solving phishing attacks on the Android platform. Background technique [0002] According to data released by the IDC (International Data Corporation) market research company in April, the Android system accounts for 78.1% of the global smartphone market. In China, the share of Android system is as high as 80%. With the continuous promotion of mobile phone applications, the accompanying data security issues have become increasingly prominent. Mobile phones store a large amount of data in people's daily life, such as address books, short messages, and application usage. Malicious applications have long been targeting the mobile market. Attacks by these malicious applications can lead to various serious consequences. Among them, privacy theft, malicious deductions, and tariff consumption account for as much as 96%. The seriousness of phishing attacks lies in the fact that they can ...

AI Technical Summary

Problems solved by technology

The way to implement identification and interception at the application layer is similar to the first step in the implementation of phishing attacks. The name of the currently running application is monitored in real time through the system background service and displayed to the user through a floating window or notification. However, there are three steps to implement identification and interception at the application layer. One shortcoming: first, in the real-time monitoring part, real-time monitoring of background services needs to regularly obtain the currently running application information. If the monitoring interval is set too long, the monitoring effect may be lost, and if it is too short, it will seriously affect system performance; Second, the interception function, the interception of phishing applications cannot be achieved at the application layer, because the startup of all applications is the responsibility of the activity management service (Activity Manager Service, AMS) of the framework layer, and the application layer has no authority to interfere with the AMS process; , user experience, real-time display through the floating window will seriously affect the user experience, and prompts through Toast are easily ignored by users

Images