[雙語翻譯]安卓外文翻譯--android應用程序的安全性

1、3000 英文單詞， 英文單詞，16500 英文字符，中文 英文字符，中文 5250 字出處： 出處：In ternational Journal of Engineering Trends and Technology (IJETT) – Volume 36 Number 1- June 2016Security on Android AppsRitu Sheoran, Meenakshi ChaudharyAbstract For

2、the smartphone users the biggest problem is privacy and the reason behind this is sharing of sensitive information while accessing the numerous apps. However, it is very difficult to understand which application can acce

3、ss what kind of information and to achieve the functionality what are the minimum number of accessing approvals are required. Before the installation of an application, all the permissions which are requested by the apps

4、 are represented in the dialog box. And it depends on the user what to do in such condition either to accept the permissions requested or select not to continue with installation. Even the security risks are also associa

5、ted with online advertisements. It is possible that to disperse malignant malware with online promotions and taint end clients' PC. The individual information is gathered by all internet publicizing organizations wit

6、hout clients' knowledge. Individual data can be utilized to damage clients or can be sold to outsiders. In this paper we build up a wrapper that give a consent administration interface furthermore build up a Patcher

7、that is being infused into the APK installer record to improve the security of the Android applications.Keywords — Android, Malware, Manifest files, Permissions, Android Security, Advertising banners.I. INTRODUCTION 1 .

8、BASIC OF ANDROIDIn Mobile’s the most popular operating software is Android that is as of now created by Google. Android is generally centered on LINUX KERNEL and planned initially for the touchscreen gadgets like tablets

9、 and mobile phones. Android client interface is normally centered on direct management utilizing touch movements that mostly relate to real world activities, for example, tapping, pinching to change on screen objects, al

10、ongside for the text input virtual keyboard is used. What's more with these touchscreen gadgets, Google also develop android TV for TV’s, android wear for wrist watches, and for cars android auto, with their user int

11、erface. Indeed, even android is additionally utilized as a part of games, computerized cameras, note pads and different gadgets.1.1 OPEN SOURCEAndroid was introduced in 2007, alongside the establishing of open handset or

12、ganization together that is comprised of software, hardware and telecom organizations invent open standards for cell phones. There are millions of android app developed and downloaded from Google play store. For cell pho

13、nes android is open source software. In the development of life cycle of an application android never force strong controls as per the philosophy of design, namely openness. The source codes are discharged to general soc

14、iety. Anybody can compose and put applications without affirm by Google. However the absence of control can bring about vulnerabilities particularly when the security of the framework relies on upon the client validation

15、 choice. Android permit everybody to compose their own particular application and afterward distribute it unreservedly.do not offer any user interface. Playing a music and downloading a file even as a user interacts with

16、 another application are the examples of operations that may run as a Service.(3) Broadcast Receiver components: react serially to system-wide message broadcasts. A receiver component usually acts as a gateway to furthe

17、r components, and passes on messages to Services or Activities to handle them.(4) Content Provider components: make available database capabilities to additional components. Such databases can be mostly used for both int

18、ra-app data persistence along with sharing data across applications.1.4 PermissionsEnforcing permissions is the other mechanism, other than sandboxing, provided by the Android framework to save applications, by which li

19、mitations are placed on the specific operations that an application can perform, such as interacting with the databases and the system APIs, along with cross application interactions. Each application should state upfron

20、t as part of its manifest the permissions it needed, and the Android system prompts the user for consent during the application installation. Should the user decline permit the requested permissions to an application, th

21、e application installation is dropped. No dynamic mechanism is given by Android for granting permissions after application installation. The manifest file also declares permissions imposed by the application or by any of

22、 its components, the other applications thus should have those permissions to interact with such protected components [1].1.4.1 Permission Protection LevelAndroid permissions manage the access to functionalities and sen

23、sitive resources. There are nearly 134 Android-defined permissions which are accessible to third party applications. Permissions are mainly defined with one of the four dissimilar protection levels, which differentiate

24、the potential risks implied in the permission and enforce conflicting install-time approval processes. Protection levels which are associated with permissions are [11]:·Normal Dangerous ·Signature·Signatur

25、eOrSystemNormal: normal permissions are permitted automatically.Dangerous: permissions can be granted by the user during installation. If the permission request is rejected, then the application is not installed.Signatur

26、e: signature permissions are only permitted if the requesting application is signed by the same developer that defined the permission. Signature permissions are helpful for controlling component access to a small set of

27、applications controlled and trusted by the developer.Signature Or System: These permissions are granted if the application is installed in the system applications folder or if the application meets the Signature requirem

28、ent. System applications folder cannot place the applications from the Android Market. System applications must be pre-installed by the device manufacturer or manually installed by an advanced user.Aside from the above

29、mentioned division, permissions are also divided by the way of accepting them:Time-of-use: user must confirm this permission when executing sensitive operation (e.g. access to device location). It is the only way to prev