Dypermin: Dynamic permission mining framework for android platform

摘要

The Android architecture introduces to the application layer a permission based access control model for restricting access to sensitive phone resources. In this model the access to Application Programming Interfaces (APIs) is protected through permissions defined by the Android OS. The developers in order to utilize protected API methods must declare, in the application's manifest, the appropriate permissions. The "relation" between framework method and a permission can be found through Android's documentation. However, not only documentation may accidentally lack information but also Android features undocumented and hidden API methods. Undoubtedly a major challenge for researchers today, is the accurate identification of API methods and permissions pairs, which compose the permission map for the Android framework.