中大機構典藏-NCU Institutional Repository-提供博碩士論文、考古題、期刊論文、研究計畫等下載:Item 987654321/61025
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 81570/81570 (100%)
Visitors : 47014751      Online Users : 103
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: http://ir.lib.ncu.edu.tw/handle/987654321/61025


    Title: A Solution to Protect Your Android from Sending Unknown SMS Messages
    Authors: 廖緯玲;Liao,Wei-Ling
    Contributors: 資訊工程學系
    Keywords: SMS木馬;SMS惡意軟體;SMS Trojans;SMS malware;Android Security;mobile Security;SEND_SMS
    Date: 2013-07-24
    Issue Date: 2013-08-22 12:10:04 (UTC+8)
    Publisher: 國立中央大學
    Abstract: 由於Android對於敏感應用程式介面 (Application Programming Interface, API)是用權限機制來做管理與限制,所以這些惡意軟體想要存取這些敏感API的話,只要在 AndroidManiflest.XML 檔案當中揭露它所需要的權限,就可以一直使用,直到它被解除安裝為止,也因此SMS malware可以利用這種機制,在使用者不知道的情況下,擅自寄送簡訊,造成使用者財務損失。在本篇論文中,我們藉由分析SMS malware發送SMS簡訊的行為,設計出防止SMS簡訊被濫發的機制 ─ Taurus,以解決目前SMS malware的問題。Taurus以動態監控的方式,透過記錄使用者輸入的內容與即將要發送出去的SMS簡訊內容和接收方的電話號碼做比對,來確認SMS簡訊是否使用者發送。若兩者比對不成功,則Taurus會向使用者發出通知訊息,讓使用者確認是否要發送此SMS簡訊,一旦曾經被拒絕發送的應用程式和簡訊又再次重新發送,Taurus就會判定其為惡意行為並中止其執行,阻止SMS malware發送簡訊。
    Android uses permission mechanism to protect sensitive Application Programming Interface (API) and private data. Malicious app can access these sensitive APIs and private data as long as it declares the permissions that it needs in AndroidManifest.xml until it is removed from Android device. Therefore SMS malware can steal money from victims' mobile accounts by sending SMS messages without victim awareness.In this paper, we designed a mechanism named Taurus, to prevent SMS malware sending SMS messages automatically. Taurus monitors the outgoing SMS message and compares the recorded user input with the SMS message to confirm whether they are being sent by the user or not. If two comparing contents are different, Taurus will notify user for confirmation before sending the SMS message. If there is other attempts of sending the rejected message, Taurus will determine it to be malicious behavior and terminate the execution of the app.
    Appears in Collections:[Graduate Institute of Computer Science and Information Engineering] Electronic Thesis & Dissertation

    Files in This Item:

    File Description SizeFormat
    index.html0KbHTML627View/Open


    All items in NCUIR are protected by copyright, with all rights reserved.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明