[雙語翻譯]安卓外文翻譯--android應用程序的安全性（英文）

1、 International Journal of Engineering Trends and Technology (IJETT) – Volume 36 Number 1- June 2016 ISSN: 2231-5381 http://www.ijettjournal.org Page 14 Security on

2、 Android Apps Ritu Sheoran1, Meenakshi Chaudhary2 1M. Tech Scholar, Department of Computer Science and Engineering,Seth jai ParkashMukandLal Institute of Technology, Radaur (Yamunanagar) 2Assistant Professor, Departm

3、ent of Computer Science and Engineering,Seth Jai ParkashMukandLal Institute of Technology, Radaur (Yamunanagar) Abstract — For the smartphone users the biggest problem is privacy and the reason behind this is sharing o

4、f sensitive information while accessing the numerous apps. However, it is very difficult to understand which application can access what kind of information and to achieve the functionality what are the minimum numbe

5、r of accessing approvals are required. Before the installation of an application, all the permissions which are requested by the apps are represented in the dialog box. And it depends on the user what to do in such c

6、ondition either to accept the permissions requested or select not to continue with installation. Even the security risks are also associated with online advertisements. It is possible that to disperse malignant malwa

7、re with online promotions and taint end clients' PC. The individual information is gathered by all internet publicizing organizations without clients' knowledge. Individual data can be utilized to damage clie

8、nts or can be sold to outsiders. In this paper we build up a wrapper that give a consent administration interface furthermore build up a Patcher that is being infused into the APK installer record to improve the secu

9、rity of the Android applications. Keywords — Android, Malware, Manifest files, Permissions, Android Security, Advertising banners. I. INTRODUCTION 1 .BASIC OF ANDROID In Mobile’s the most popular operating software i

10、s Android that is as of now created by Google. Android is generally centered on LINUX KERNEL and planned initially for the touchscreen gadgets like tablets and mobile phones. Android client interface is normally cen

11、tered on direct management utilizing touch movements that mostly relate to real world activities, for example, tapping, pinching to change on screen objects, alongside for the text input virtual keyboard is used. Wha

12、t's more with these touchscreen gadgets, Google also develop android TV for TV’s, android wear for wrist watches, and for cars android auto, with their user interface. Indeed, even android is additionally utilize

13、d as a part of games, computerized cameras, note pads and different gadgets. 1.1OPEN SOURCE Android was introduced in 2007, alongside the establishing of open handset organization together that is comprised of softw

14、are, hardware and telecom organizations invent open standards for cell phones. There are millions of android app developed and downloaded from Google play store. For cell phones android is open source software. In t

15、he development of life cycle of an application android never force strong controls as per the philosophy of design, namely openness. The source codes are discharged to general society. Anybody can compose and put ap

16、plications without affirm by Google. However the absence of control can bring about vulnerabilities particularly when the security of the framework relies on upon the client validation choice. Android permit everybod

17、y to compose their own particular application and afterward distribute it unreservedly. 1.2 FEATURES OF ANDROID Interface Applications Memory management 1.2.1 INTERFACE Android's default client interface is normall

18、y centered on direct control, utilizing touch movements that frequently compare to genuine activities like pinching to control the screen stuffs, tapping, alongside virtual keyboard. Game controllers and in add

19、ition physical consoles are supported by means of USB or Bluetooth. At the point when the client inputs then the reaction is intended to be prompt and gives a liquid touch interface, over and over utilizing the vibra

20、tion capacities of the gadget to give criticism to the client. Interior equipment, for example, accelerometers, gyroscopes and proximity sensors are utilized by different applications to react to the client activitie

21、s, for instance permitting the client to drive the vehicle in racing games by pivoting the gadget, control of a controlling wheel. 1.2.2 APPLICATIONS To increase the functionality of a gadget the application used ar

22、e generally written by using Android software development kit (SDK) and, mostly, the android APIs are completely accessed by java programming. There is a large collection of third party app’s in android , and users c

23、an get these International Journal of Engineering Trends and Technology (IJETT) – Volume 36 Number 1- June 2016 ISSN: 2231-5381 http://www.ijettjournal.org Page 16

24、Normal: normal permissions are permitted automatically. Dangerous: permissions can be granted by the user during installation. If the permission request is rejected, then the application is not installed. Signature: s

25、ignature permissions are only permitted if the requesting application is signed by the same developer that defined the permission. Signature permissions are helpful for controlling component access to a small set of

26、applications controlled and trusted by the developer. SignatureOrSystem: These permissions are granted if the application is installed in the system applications folder or if the application meets the Signature requi

27、rement. System applications folder cannot place the applications from the Android Market. System applications must be pre-installed by the device manufacturer or manually installed by an advanced user. Aside from th

28、e above mentioned division, permissions are also divided by the way of accepting them: Time-of-use: user must confirm this permission when executing sensitive operation (e.g. access to device location). It is the

29、only way to prevent applications to access device resources. Install-time: accepted when installing application, user accepts them as one; he cannot choose which permissions to accept and which to deny [14]. 1.5 Android

30、Security model The android security model is planned in such a way that no application is given the permission to carry out any operation that can poorly affect further applications, the user or the operating system.

31、 Android is considered to be a multi-process system because each application runs in its own process. Linux facilities such as group and user IDs are allocated to applications which enforce security between the syst

32、em and the applications at the process level. Additional security is provided using the “Permissions” mechanism that grant each process to perform certain operations only and also provides “per-URI permission” that g

33、ive improvised access rights to certain information only. Permission mechanism and Sandbox is said to be the base of the Android Security Model. It is known that each application’s code runs in a specific Dalvik Virt