Android智能移动终端迅猛发展的同时,其安全问题也层出不穷,而且Android系统自身提供的沙箱机制,签名机制和权限访问控制也存在着缺陷,无法应对目前出现的各种安全问题。针对权限访问控制机制对组件通信保护存在的不足,文章提出了一种增强型安全访问控制方案,该方案利用签名机制对组件进行签名,在Android Framework层对需要进行安全保护的组件通信进行签名验证,以实现增强型的组件安全访问控制。实验结果表明,该方案能够对控制访问的通信过程进行有效地审核,提高了组件通信的安全性。%With the rapid development of Android smart mobile devices, its security issues emerge in endlessly. However, the sandbox mechanism, signature mechanism and access control of permission provided by Android system has its drawbacks, and unable to cope with a variety of security problems at present. Given the lack of access control mechanisms for the protection of communication components, this paper presents an enhanced security access control scheme, in which signature mechanism is used to sign the components in the scheme and achieve enhanced security access control for components communication need to be protected, and certificate verification is checked in the Android Framework layer. Experimental results show that the scheme can be effective for the security access control of process validation, and improve the security of the communication component.
展开▼
