Security defense method and device of Android privilege escalation attack based on integrity verification

A technology of integrity verification and authority promotion, applied in the field of information security, it can solve the problems of lag in defense effect and insufficient timeliness, and achieve the effect of improving security, protecting security and reducing security threats.
CN107016283AActive Publication Date: 2017-08-04INST OF INFORMATION ENG CAS
6 Cites 9 Cited by

Patent Information

Authority / Receiving Office
CN · China
Current Assignee / Owner
INST OF INFORMATION ENG CAS
Publication Date
2017-08-04

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention relates to a security defense method and device of the Android privilege escalation attacks based on integrity verifications. The method comprises the steps that the case that whether or not an application program is executing the system calls associated with sensitive kernel functions is detected in real time; integrity verifications are conducted on the sensitive kernel functions to be executed by the system calls; the accuracy and reliability of the kernel function pointer corresponding to the sensitive kernel functions are examined; the case that whether or not the internal storage pointed by the kernel function pointers has the commands for the privilege escalation attack features is evaluated; the detected application privilege escalation attacks are given warnings and blocked. According to the security defense method and device of the Android privilege escalation attacks based on integrity verifications, the privilege escalation attack behaviors of malicious programs are detected in real time and are given warnings and blocked, and the damages caused by attacks on the Android system are prevented, and the securities of the application and data are effectively protected. The security defense method and device of the Android privilege escalation attacks based on integrity verifications reduce security threats brought to the Android system by the privilege escalation vulnerabilities, and enhance the security of the Android system.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The present invention relates to the technical field of information security, in particular to a security defense method and device for Android privilege escalation attacks based on integrity verification. Background technique

[0002] This section introduces readers to background technologies that may be related to various aspects of the present invention, and it is believed that useful background information can be provided to readers, thereby helping readers to better understand various aspects of the present invention. Accordingly, it is to be understood that the descriptions in this section are for the purposes stated above and do not constitute admissions of prior art.

[0003] Privilege escalation attack is an attack method that exploits Android system vulnerabilities to illegally elevate the running privileges of applications. Taking advantage of the privilege escalation vulnerability in the Android system, malicious programs can bypass the pr...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More