{"title":"Android应用的个人隐私安全检测技术研究","authors":"Wang Chao, Dong Jiahan, Wang Xiaohu, Ren Tianyu","doi":"10.1109/IAEAC54830.2022.9930036","DOIUrl":null,"url":null,"abstract":"With the intensive release and implementation of relevant laws, regulations and standards on personal information protection, mobile APP, as the key application carrier and entrance and exit of personal information, has attracted more and more attention from government regulators and the public. In order to improve the accuracy of security detection of personal privacy violation in Android Apps, an APP sensitive privacy behavior detection method based on Frida hook monitoring was proposed. The method calls the system function interface through Frida hook APP to intercept and monitor the access to sensitive privacy data such as external storage, address book, SMS and geographical location, and construct the APP sensitive behavior access list. Combined with the application type, comprehensively analyze the permission list and sensitive behavior list to judge whether the APP has the problem of collecting personal privacy information beyond the scope. By selecting common mobile APPs such as audio-visual, online games and social chat, the verification test is carried out. The personal privacy security detection method can find the violation problems of the notified APP, which has certain practicality.","PeriodicalId":349113,"journal":{"name":"2022 IEEE 6th Advanced Information Technology, Electronic and Automation Control Conference (IAEAC )","volume":"93 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-10-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Research on Personal Privacy Security Detection Technology for Android Application\",\"authors\":\"Wang Chao, Dong Jiahan, Wang Xiaohu, Ren Tianyu\",\"doi\":\"10.1109/IAEAC54830.2022.9930036\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"With the intensive release and implementation of relevant laws, regulations and standards on personal information protection, mobile APP, as the key application carrier and entrance and exit of personal information, has attracted more and more attention from government regulators and the public. In order to improve the accuracy of security detection of personal privacy violation in Android Apps, an APP sensitive privacy behavior detection method based on Frida hook monitoring was proposed. The method calls the system function interface through Frida hook APP to intercept and monitor the access to sensitive privacy data such as external storage, address book, SMS and geographical location, and construct the APP sensitive behavior access list. Combined with the application type, comprehensively analyze the permission list and sensitive behavior list to judge whether the APP has the problem of collecting personal privacy information beyond the scope. By selecting common mobile APPs such as audio-visual, online games and social chat, the verification test is carried out. The personal privacy security detection method can find the violation problems of the notified APP, which has certain practicality.\",\"PeriodicalId\":349113,\"journal\":{\"name\":\"2022 IEEE 6th Advanced Information Technology, Electronic and Automation Control Conference (IAEAC )\",\"volume\":\"93 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-10-03\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 IEEE 6th Advanced Information Technology, Electronic and Automation Control Conference (IAEAC )\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/IAEAC54830.2022.9930036\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE 6th Advanced Information Technology, Electronic and Automation Control Conference (IAEAC )","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IAEAC54830.2022.9930036","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Research on Personal Privacy Security Detection Technology for Android Application
With the intensive release and implementation of relevant laws, regulations and standards on personal information protection, mobile APP, as the key application carrier and entrance and exit of personal information, has attracted more and more attention from government regulators and the public. In order to improve the accuracy of security detection of personal privacy violation in Android Apps, an APP sensitive privacy behavior detection method based on Frida hook monitoring was proposed. The method calls the system function interface through Frida hook APP to intercept and monitor the access to sensitive privacy data such as external storage, address book, SMS and geographical location, and construct the APP sensitive behavior access list. Combined with the application type, comprehensively analyze the permission list and sensitive behavior list to judge whether the APP has the problem of collecting personal privacy information beyond the scope. By selecting common mobile APPs such as audio-visual, online games and social chat, the verification test is carried out. The personal privacy security detection method can find the violation problems of the notified APP, which has certain practicality.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
