PasDroid: 在Android系統上即時防堵惡意軟體的保護方案

Android是目前最熱門的智慧型手機系統. 目前的Android系統無法讓使用者知道應用程式何時存取用戶的私密資料. 再來, 由於Android缺少審核機制, 使得惡意軟體正爆炸姓成長，而這些惡意軟體可能竊取使用者的私密資料。利用PasDroid可以降低使用者私密資料被竊取的風險, 並且可以讓使用者自行定義哪些檔案是私密資料並且持續追蹤這些資料。PasDroid提供白名單機制讓使用者去控制應用程式允許送出的私密資料類型。當有未經授權的私密資料被傳送出去前，PasDroid會阻止這筆資料的傳送並且跳出警告視窗通知使用者。

關鍵字

安全；安卓；智慧型手機；隱私；私密；保護；個人資料

並列摘要

Today Android has become the most popular smartphone operating systems. The current Android systems fail to provide users with adequate control over and visibility how third-party applications use their private data. Furthermore, Android doesn’t provide app review which brings to the explosion of malware. The malware might steal privacy data stored in Android phone. We reduce the risk of the private data leakage with PasDroid, allowing users to define their own sesntive source and taint tags to simultaneously tracking multiple sources of sensitive data. PasDroid maintains white list per applications installed in Android systems to control the sent data of the application. When there has an authorized data is goind to send out, PasDroid drops the data and shows dialog within detailed information to notify user.

並列關鍵字

Security ； Android ； SmartPhone ； Private ； Privacy ； Protect ； Personal Data

參考文獻

[3] M. Ongtang, S. McLaughlin, W. Enck, and P. McDaniel, “Semantically rich applicationcentric

[5] M. Conti, V. T. N. Nguyen, and B. Crispo, “Crepe: context-related policy enforcement

for android,” in Proceedings of the 13th international conference on Information

[6] G. Bai, L. Gu, T. Feng, Y. Guo, and X. Chen, “Context-aware usage control for android,”

privacy for application functionality on smartphones,” in Proceedings of the

國際替代計量

PasDroid: 在Android系統上即時防堵惡意軟體的保護方案

全文下載

主題瀏覽