METHOD TO ENHANCE SECURITY BASED ON PERMISSION DETECTION FOR ANDROID APPLICATIONS, AND COMPUTER-READABLE RECORDING MEDIUM STORING ANDROID SECURITY PROGRAM BASED ON PERMISSION DETECTION FOR SAME

摘要

The present invention relates to a technique to enhance security based on the permission detection for Android applications in the Android operating system and, more specifically, to a technique to enhance security based on the permission detection for Android applications, which is capable of detecting the existence of malicious codes (for example, security attacks such as a malicious program, debugging or hooking) by detecting elevated rights of an administrator of the Android operation system such that an application, such as a financial program (for example, a banking application and a stock application), which requires a high level of security, can be operated in a safe environment in the Android operation system. According to the present invention, it is possible to secure a high level of security for a financial program (for example, a banking application and a stock application) and to further flexibly deal with the debugging or hooking attacks by an unknown malicious code by detecting malicious codes through the permission detection.;COPYRIGHT KIPO 2014;[Reference numerals] (AA) Start; (BB) End; (S31) Read a file directory; (S32) Read file property information; (S33) Does the readout succeed?; (S34) Is elevation of rights possible?; (S35) Determine that a file has a potential security risk and process security therefor; (S41) Check whether a folder is a directory, of which readout is prohibited, as system defau (S42) Check whether the folder has execution rights; (S43) Determine that a file having a potential security risk is hidden or a file system is changed and process security for the folder