Design and Implementation of Android Security Data Storage Platform

doi:10.3969/j.issn.1671-1122.2015.09.027

Abstract

Abstract:

As mobile devices of Android are becoming very prevalent, more and more personal privacy data is stored in the Android mobile terminal. Due to the openness of Android, lots of malicious programs are attacking the system, which result in problems of privacy data leakage. Private data protection is necessary to be resolved. This paper designs and implement a kind of Android security data storage platform, which used a key protection scheme with the collaboration of Android APP and cloud server. Simultaneously, the technology of key split and multiple-key system is used to ensure the security. The platform can ensure the data security storage based on the above. The Third-party APP can store privacy data securely in the terminal through this platform. Also user can login cloud server to control of all privacy data in Android, which shows a very high security and scalability.

Key words: key protection, Android, cloud server, key split, data storage

CLC Number:

TP309

Wei TIAN, Neng GAO, Ping-jian WANG, Ling-chen ZHANG. Design and Implementation of Android Security Data Storage Platform[J]. Netinfo Security, 2015, 15(9): 113-118.

Figures/Tables 7

References 17

[1]	Gartner.2015年Q1全球智能手机终端销售量达3.36亿增长19.3%. [EB/OL]..
[2]	2015年第一季度中国互联网安全报告[EB/OL]..
[3]	赵洋,胡龙,熊虎,等. 基于沙盒的Android恶意软件动态分析方案[J]. 信息网络安全,2014,(12):21-26.
[4]	Doukas C, Pliakas T, Maglogiannis I.Mobile healthcare information management utilizing Cloud Computing and Android OS[C]//Engineering in Medicine and Biology Society (EMBC), 2010 Annual International Conference of the IEEE. IEEE, 2010: 1037-1040.
[5]	Muntés-Mulero V, Nin J.Privacy and anonymization for very large datasets[C]//Proceedings of the 18th ACM conference on Information and knowledge management. ACM, 2009: 2117-2118.
[6]	闫晓丹, 闫伟. 基于Android 的隐私数据安全保护系统研究与实现[J]. 硅谷, 2013 (20): 72-74.
[7]	闫玺玺. 开放网络环境下隐私数据安全与防泄密关键技术研究[D].北京:北京邮电大学, 2012.
[8]	黄可臻,李宇翔,林柏钢. 基于Android的隐私数据安全保护系统[J]. 信息网络安全,2014,(9):54-57.
[9]	吴倩, 赵晨啸, 郭莹. Android 安全机制解析与应用实践[M]. 北京: 机械工业出版社, 2013.
[10]	张金鑫,杨晓辉. 基于权限分析的Android应用程序检测系统[J]. 信息网络安全,2014,(7):30-34.
[11]	KeyStore[EB/OL]..
[12]	Android新漏洞泄露敏感信息:影响近九成用户[EB/OL]..
[13]	高岳,胡爱群. 基于权限分析的Android隐私数据泄露动态检测方法[J]. 信息网络安全,2014,(2):27-31.
[14]	Data Storage[EB/OL]..
[15]	张晓,李林,许家乐,等. 基于SMC的Android软件保护研究与实现[J]. 信息网络安全,2014,(11):74-78.
[16]	中国科学院信息工程研究所. 适用于云计算的基于SM2算法的签名及解密方法和系统:中国, CN104243456 A[P],2014-12-24.
[17]	Service Guide[EB/OL]..