首页>
外国专利>
TRUSTZONE-BASED SECURITY ISOLATION METHOD FOR SHARED LIBRARY AND SYSTEM THEREOF
TRUSTZONE-BASED SECURITY ISOLATION METHOD FOR SHARED LIBRARY AND SYSTEM THEREOF
展开▼
机译:基于信任区的共享库安全隔离方法及系统
展开▼
页面导航
摘要
著录项
相似文献
摘要
The present invention provides a TrustZone-based security isolation system for shared library, the system at least comprising: a sandbox creator, a library controller, and an interceptor, the sandbox creator, in a normal world, dynamically creating a sandbox isolated from a Rich OS, the interceptor, intercepting corresponding system-calling information and/or Android framework APIs by means of inter-process stack inspection, the library controller, performing analysis based on the intercepted system-calling information and/or Android framework APIs, redirecting a library function to the sandbox, and switching calling states of the library function in the sandbox as well as setting up a library authority. The present invention has good versatility, low cost and high security. It realizes isolation of the library without increasing the trusted bases in the Secure World of the TrustZone, effectively reducing the risk of being attacked.
展开▼