基于静态污点分析的Android应用Intent注入漏洞检测方法

针对Android应用程序组件间通信过程中的消息载体Intent有可能被攻击者构造进而引发组件被恶意注入的安全风险问题,提出了一种基于静态污点分析的检测方法。在构建Android应用的函数调用图和控制流图的基础上,通过跟踪应用组件内和组件间不可信Intent消息的污点传播过程,检测应用中潜在的Intent注入漏洞。用该方法对4类标准测试应用和50款第三方应用进行测试,实验结果表明了该方法的可行性和有效性。

Approach of Android Applications Intent Injection Vulnerability Detection Based on Static Taint Analysis

As a message carrier in the process of component communication of Android application,Intent can be malformed by an attacker,leading to security risk of malicious component injection.A detection approach based on static taint analysis was presented.On the basis of building call graph and control flow graph of Android application,by trackingthe taint propagation with in and between components,the potential Intent injection vulnerability can be detected.This method is used to test four types of benchmark and fifty third-party applications,and the experimental results show the feasibility and effectiveness of the proposed approach.