In recent years, mobile devices have become more and more popular in human life. As a popular operating system, Android Security has become one of the important issues and more and more researchers focus on the Android security. We study the existing researches for Android security test and find that the existing researches only focus on security of Android applications. As the last defense line before a user can use a secure smartphone, a quality assurancer should provide the baseline security for the Android smartphone. In this thesis, we design and develop a security testing tool, Security Analyser for Android Mobile Device (SAM) to help a quality assurancer to systematically analyze the security of an Android smartphone. SAM is a framework of an Android security testing tool, which is composed of a tester (called SPST) and an mobile application (called SPSA). SPST installed in a server or a personal computer can flexibly adopt a security testing module as a plugin. A quality assurancer can insert or remove the testing modules as required. To prove the design of our framework, we implement three testing modules, including Post Scan, Browser Vulnerability attack, and Password Strength in our testing tool. Moreover, to provide a systematic way to analyze the security of an Android smartphone, we also design the security baselines covering application security, network security, and system security. With the security baselines, a quality assurancers can conduct a test plan to systematically examine the security of an Android smartphone.