###
Journal of Software:2017.28(11):3058-3071

移动应用安全生态链构建方法
杨昕雨,徐国爱
(北京邮电大学 网络空间安全学院, 北京 100876)
Construction Method on Mobile Application Security Ecological Chain
YANG Xin-Yu,XU Guo-Ai
(School of Cyberspace Security, Beijing University of Posts and Telecommunications, Beijing 100876, China)
Abstract
Chart / table
Reference
Similar Articles
Article :Browse 1023   Download 1141
Received:April 14, 2017    Revised:June 16, 2017
> 中文摘要: 移动应用软件安全检测和防护是软件安全领域中的研究热点.传统的安全解决方案是安全厂商将其开发的APP安装到用户终端进行保护,但对于安全意识薄弱的普通用户而言,他们不了解安全威胁的严重性和安全管理APP的重要性,终端缺少安全威胁的防御能力,需要从威胁发生的源头和传播途径进行保护.从威胁发生的源头、途径和终端出发,实现了基于编程风格的源代码作者溯源追踪、移动应用安全加固及渠道监测、基于深度学习的移动应用安全检测,构建移动应用安全生态链,保障用户个人信息安全.在实际应用环境中验证了所提出方法的有效性,结果显示,该方法能够达到应用全方位安全防护的目的.另外,也对未来的研究方向进行了展望.
Abstract:Mobile application security detection and protection is an active research topic in the domain of software security. The traditional security solution is to install the APP developed by security vendors on user terminals. However, for the normal users lacking of security awareness, they do not understand the seriousness of security threat and the importance of security management, thus leading to insufficient terminal security defense. It is necessary to take protection from the threat source and transmission route. This paper implements various security measures including source code authorship attribution based on coding style, mobile application security reinforcement and channel monitoring, and mobile application security detection based on deep learning over the view of threat source, transmission route and threatened terminal. A mobile application security ecological chain is also constructed to protect users' personal information security. The paper verifies the effectiveness of proposed method in the practical application environment. The results show that it can achieve the goal of all-around application security protection. Future work in this research area is also discussed.
文章编号:     中图分类号:    文献标志码:
基金项目:国家自然科学基金(U1536119,61401038) 国家自然科学基金(U1536119,61401038)
Foundation items:National Natural Science Foundation of China (U1536119, 61401038)
Reference text:

杨昕雨,徐国爱.移动应用安全生态链构建方法.软件学报,2017,28(11):3058-3071

YANG Xin-Yu,XU Guo-Ai.Construction Method on Mobile Application Security Ecological Chain.Journal of Software,2017,28(11):3058-3071