Privacy leakage vulnerability detection confirming method based on static stain data analysis

Abstract

The invention discloses a method for detecting whether privacy leakage vulnerability exists in an Android application software APP or not. The method mainly solves the problems of low vulnerability detection speed, high detection environment requirements and low detection accuracy in the prior art. The method comprises the realization processes of configuring an optimization detection file; limiting an assembly and callback of the detected Android application software APP; performing static stain data stream analysis on the limited assembly and callback to obtain a stain data stream path; further processing the stain path, building a function node sequence; expanding and filling with function nodes, performing pruning and compression processing, and connecting the processed function nodes to form a detail stain data flowing path; performing deduplication processing on the detail stain data flowing path; then, performing graphical output. The method provided by the invention has the advantages that the speed of detecting the privacy leakage vulnerability of the Android application software APP is accelerated; the requirements on the detection environment and the vulnerability reproducing difficulty are reduced, so that the vulnerability analysis is faster and more accurate.

Description

technical field [0001] The invention belongs to the technical field of information security, and in particular relates to a privacy leakage detection method, which can be used to detect and analyze whether Android mobile phone application software leaks user privacy data, and there are privacy leakage loopholes. Background technique [0002] With the rapid development of the mobile Internet, smart phone devices are rapidly gaining popularity, and the Android system occupies 2 / 3 of the entire mobile phone market, and the market share is still increasing steadily. The Android system is an open platform. When the installed application is installed, after the user gives the corresponding permission, the application can freely obtain the corresponding stealth data. The user knows nothing about the use of these data. Whether the application is normal or malicious. [0003] Existing analysis methods can be divided into two types of analysis methods from the level of whether the pr...

AI Technical Summary

Problems solved by technology

[0008] One: Cannot detect quickly and effectively

[0009] The functions supported by the current APP are becoming more and more complex, which directly leads to a large amount of APP code and complex logic; at the same time, because the current APP focuses on user experience, the original simple code is no longer applicable, but needs to be processed in many ways to meet the requirements. The rapid response of the APP and the need to improve the user experience, these factors make the code volume of the APP large and the logic complex; the large code volume and complex logic make the amount of analyzed data rise linearly, resulting in slow detection process and abnormal detection

[0010] Two: High false positive rate in taint analysis

[0011] For static taint analysis, because the APP is not actually run, but the possible flow direction of the taint data in the program is tracked according to the relevant rule

Images