首页|期刊导航|电子科技大学学报|基于语义的Android敏感行为静态分析方法

基于语义的Android敏感行为静态分析方法

董航刘洋李承泽付戈张淼杨义先

电子科技大学学报2017，Vol.46Issue(2)：434-440,7.

电子科技大学学报2017，Vol.46Issue(2)：434-440,7.DOI:10.3969/j.issn.1001-0548.2017.02.019

基于语义的Android敏感行为静态分析方法

Semantic-Based Sensitive Behavior Analysis Method for Android

董航 ¹刘洋 ²李承泽 ¹付戈 ²张淼 ¹杨义先¹

作者信息

1. 北京邮电大学信息安全中心北京海淀区 100876
2. 国家计算机网络应急技术处理协调中心北京朝阳区 100029
折叠

摘要

Abstract

This paper proposes a semantic-based sensitive behavior analysis method for Android. With sample statistics results, the method firstly adopts a simple-Dalvik intermediate language (SDIL) as the intermediate language for text analysis, thus giving a symbolic semantics description for instructions. Then the method uses SDIL to detect sensitive calls from the samples and traces the call paths according to the control dependence. Then based on control-flow analysis, the method adopts constraint solving to obtain path conditions. At last, the method finds the background behaviors with trigger conditions, thus the whole process of background behavior execution will be showed as well. This method can release the path explosion problem in the process of symbolic execution. With experiment under our platform, it proves that the method can analyze the background behaviors of mobile application efficiently, and find the unknown mobile malicious applications which can not be found by traditional feature detection methods in time.

关键词

Android/行为分析/约束求解/形式化描述

Key words

Android/behavior analysis/constraint solve/formal description

分类

信息技术与安全科学

引用本文复制引用

董航,刘洋,李承泽,付戈,张淼,杨义先..基于语义的Android敏感行为静态分析方法[J].电子科技大学学报,2017,46(2):434-440,7.

基金项目

国家自然科学基金(61302087) （61302087）

国家科技支撑计划(2012BAH06B02) （2012BAH06B02）

教育部博士点基金(20120005110017) （20120005110017）

电子科技大学学报

OA北大核心CSCDCSTPCD

ISSN：1001-0548

访问量0

下载量0

段落导航