CN115859360A - APP personal data security detection scoring device and method - Google Patents
APP personal data security detection scoring device and method Download PDFInfo
- Publication number
- CN115859360A CN115859360A CN202211656180.XA CN202211656180A CN115859360A CN 115859360 A CN115859360 A CN 115859360A CN 202211656180 A CN202211656180 A CN 202211656180A CN 115859360 A CN115859360 A CN 115859360A
- Authority
- CN
- China
- Prior art keywords
- app
- information
- access
- apk
- detection
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000001514 detection method Methods 0.000 title claims abstract description 51
- 238000000034 method Methods 0.000 title abstract description 13
- 238000013077 scoring method Methods 0.000 claims description 9
- 230000010354 integration Effects 0.000 claims description 6
- 238000004458 analytical method Methods 0.000 claims description 5
- 239000000523 sample Substances 0.000 claims description 3
- 238000007689 inspection Methods 0.000 claims 1
- 239000004973 liquid crystal related substance Substances 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000011156 evaluation Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000011158 quantitative evaluation Methods 0.000 description 1
- 238000012502 risk assessment Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention provides an APP personal data security detection scoring device and method. The method comprises the following steps: step 1: acquiring an apk packet to be detected; step 2: decompressing and decompiling the apk packet to be detected, and acquiring the mandatory access condition of the APP to the privacy authority and the APP information; the privacy authority comprises one or more of address book access, short message access, camera access, file operation/photo album access, recording access, identity card information acquisition and information push; the APP information comprises a name and a version number; and step 3: obtaining complaint report information aiming at the APP according to the APP information; and 4, step 4: and calculating to obtain the risk value of the APP by taking the mandatory asking condition and the complaint report information of each privacy authority as risk elements.
Description
Technical Field
The invention relates to the technical field of data security, in particular to an APP personal data security detection scoring device and method.
Background
Most of the existing APP detection systems detect the safety of the APP, for example, detection in aspects of vulnerability safety, component safety, interface safety, communication safety, authority control, encryption and decryption, access control and the like, and detection on the safety of personal privacy data related to the APP in the use process is less. Although personal information protection policy evaluation, personal information collection, storage and use detection are also available, detection dimensionality is not comprehensive enough, analysis and judgment aiming at APP personal privacy data security risks are lacked, and a qualitative or quantitative evaluation reference value for personal privacy data security risks cannot be provided for users.
Disclosure of Invention
In order to facilitate a user to know the risk of the used APP on the safety aspect of personal privacy data, the invention provides an APP personal data safety detection scoring device and method.
In one aspect, the invention provides an APP personal data security detection scoring method, which comprises the following steps:
step 1: acquiring an apk packet to be detected;
step 2: decompressing and decompiling the to-be-detected apk packet, and acquiring the forced asking condition of the APP for the privacy authority and the APP information; the privacy authority comprises one or more of address book access, short message access, camera access, file operation/photo album access, recording access, identity card information acquisition and information push; the APP information comprises a name and a version number;
and step 3: obtaining complaint report information aiming at the APP according to the APP information;
and 4, step 4: and calculating to obtain the risk value of the APP by taking the mandatory asking condition and the complaint report information of each privacy authority as risk elements.
Further, step 1 specifically includes:
receiving apk packets manually uploaded in batches by a user; alternatively, the first and second liquid crystal display panels may be,
automatically downloading the apk packet according to the download address of the apk packet configured by the user; alternatively, the first and second liquid crystal display panels may be,
and automatically downloading the apk packages of the top N APPs in the application store according to the application store configured by the user.
Further, the step 2 specifically includes: acquiring the mandatory asking condition of the APP for the privacy authority and the APP information by analyzing the android manifest. And acquiring the SDK information.
Further, step 2 further comprises: circularly traversing the file directory, performing collision matching on file directory data and built-in SDK dictionary database data, and obtaining SDK information related to integration according to a matching result and SDK information obtained by analyzing an android manifest.
Correspondingly, step 4 further includes: the SDK information related to the integration is taken as a risk element.
Further, still include: the number of deployments of probe detection engines; if the single machine is deployed, distributing the apk packets needing to be detected to the single detection engine one by one; and if the cluster deployment is carried out, dynamically distributing the apk packets needing to be detected to each detection engine.
Further, after the step 4, the method further comprises the following steps: and generating a detection report, and sending the detection report to a user or displaying the detection report by adopting a corresponding sending mode according to the type of the user.
On the other hand, the invention provides an APP personal data security detection scoring device, which comprises:
the apk packet acquisition module is used for acquiring an apk packet to be detected;
the apk packet analysis module is used for decompressing and decompiling the to-be-detected apk packet to obtain the mandatory access condition of the APP to the privacy authority and the APP information; the privacy authority comprises one or more of address book access, short message access, camera access, file operation/photo album access, recording access, identity card information acquisition and information push; the APP information comprises a name and a version number;
the complaint report information query module is used for acquiring complaint report information aiming at the APP according to the APP information;
and the detection module is used for calculating the risk value of the APP by taking the mandatory asking condition and the complaint report information of each privacy authority as risk elements.
The invention has the beneficial effects that:
(1) The user can input the target APP to the detection device in a mode of specifying a download link of the target APP, or an application store address, or directly uploading an apk package, the use is convenient and fast, and a detailed detection report can be sent to a user-specified mailbox.
(2) By collecting the forced asking condition of each privacy authority and the related complaint reporting information of the APPP as risk elements for calculating the risk value, the obtained risk value can enable a user to know the personal information safety risk of the APP intuitively, and professional effective authoritative reference information can be provided for the user in the APP use decision, so that the risk of personal privacy disclosure is reduced.
Drawings
Fig. 1 is a schematic flow chart of an APP personal data security detection scoring method according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly described below with reference to the accompanying drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, but not all, embodiments of the present invention. All other embodiments, which can be obtained by a person skilled in the art without making any creative effort based on the embodiments in the present invention, belong to the protection scope of the present invention.
Example 1
As shown in fig. 1, an embodiment of the present invention provides an APP personal data security detection scoring method, including the following steps:
s101: after the user logs in, judging the user type, namely: determining whether the user is an individual user or an enterprise user;
specifically, if the user is an individual user, the user is prompted to fill out a mailbox address for receiving the detection report, and the enterprise user may skip the filling out step.
S102: acquiring an apk packet to be detected;
specifically, the embodiment provides the following three ways to obtain the apk packet to be detected:
(1) Receiving apk packets manually uploaded in batches by a user; alternatively, the first and second electrodes may be,
(2) Automatically downloading the apk packet according to the download address of the apk packet configured by the user; alternatively, the first and second electrodes may be,
(3) And automatically downloading the apk packages of the top N (for example, N = 1000) APPs in the application store according to the application store configured by the user.
It is understood that different manners of acquiring authority of the apk package can be set for different user types, for example, the (3) th manner can be set to be exclusive to enterprise users.
S103: the number of deployments of probe detection engines;
specifically, if the single machine is deployed, the apk packets to be detected are distributed to the single detection engine one by one; if the detection is carried out in a cluster, the apk packets needing to be detected are dynamically distributed to all detection engines, specifically, a distribution algorithm can be configured in advance, and then the distribution algorithm is called to carry out dynamic distribution when needed. As for the allocation algorithm, an existing algorithm may be adopted, and it is sufficient to ensure that the allocation is uniformly performed on each detection engine.
S104: after receiving an apk packet to be detected, a detection engine decompresses and decompiles the apk packet to be detected to obtain the mandatory asking condition of the APP for the privacy authority and APP information; the privacy authority comprises one or more of address book access, short message access, camera access, file operation/photo album access, recording access, identity card information acquisition and information push; the APP information comprises a name and a version number; APP information such as icon, software package size, md5 value and the like can also be collected.
Specifically, forced asking conditions of the APP for privacy authority and APP information are obtained by analyzing android manifest. And acquiring the SDK information.
Preferably, this step further comprises: and circularly traversing the file directory, performing collision matching on the file directory data and the built-in SDK dictionary database data, and obtaining SDK information related to integration according to a matching result and the SDK information obtained by analyzing the android manifest.
S105: obtaining complaint report information aiming at the APP according to the APP information;
specifically, an inquiry interface provided by the complaint reporting platform of the APP special treatment working group is called to inquire the complaint reporting information aiming at the APP through the name and the version number of the APP.
S106: and calculating to obtain the risk value of the APP by taking the mandatory asking condition of each privacy authority, the SDK information related to integration and the complaint report information as risk elements.
Specifically, after the risk elements are summarized, the risk value can be calculated by adopting the risk assessment method for APP personal data security disclosed in CN 113672914A.
S107: and generating a detection report, and sending the detection report to a user or displaying the detection report by adopting a corresponding sending mode according to the type of the user.
Specifically, if the method is an enterprise user, detection information of each dimension of the apk package can be directly displayed on a screen; and if the user is the personal user, sending a detection report to a mailbox address filled in by the user in advance.
Example 2
Corresponding to the above method, an embodiment of the present invention further provides an APP personal data security detection scoring apparatus, including: the system comprises an apk packet acquisition module, an apk packet analysis module, a complaint report information query module and a detection module;
the apk packet acquisition module is used for acquiring an apk packet to be detected; the apk packet analysis module is used for decompressing and decompiling the to-be-detected apk packet to acquire the forced asking condition of the APP to the privacy authority and the APP information; the privacy authority comprises one or more of address book access, short message access, camera access, file operation/photo album access, recording access, identity card information acquisition and information push; the APP information comprises a name and a version number; the complaint report information query module is used for acquiring complaint report information aiming at the APP according to the APP information; the detection module is used for calculating the risk value of the APP by taking the mandatory asking condition and the complaint report information of each privacy authority as risk elements.
It should be noted that the apparatus provided in the embodiment of the present invention is for implementing the method embodiment, and the functions of the apparatus may specifically refer to the method embodiment, which is not described herein again.
Finally, it should be noted that: the above examples are only intended to illustrate the technical solution of the present invention, and not to limit it; although the present invention has been described in detail with reference to the foregoing embodiments, it should be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions of the embodiments of the present invention.
Claims (7)
1. An APP personal data security detection scoring method is characterized by comprising the following steps:
step 1: acquiring an apk packet to be detected;
step 2: decompressing and decompiling the apk packet to be detected, and acquiring the mandatory access condition of the APP to the privacy authority and the APP information; the privacy authority comprises one or more of address book access, short message access, camera access, file operation/photo album access, recording access, identity card information acquisition and information push; the APP information comprises a name and a version number;
and step 3: obtaining complaint report information aiming at the APP according to the APP information;
and 4, step 4: and calculating to obtain the risk value of the APP by taking the mandatory asking condition and the complaint report information of each privacy authority as risk elements.
2. The APP personal data security detection scoring method according to claim 1, wherein the step 1 specifically includes:
receiving apk packets manually uploaded in batches by a user; alternatively, the first and second electrodes may be,
automatically downloading the apk packet according to the download address of the apk packet configured by the user; alternatively, the first and second electrodes may be,
and automatically downloading the apk packages of the top N APPs in the application store according to the application store configured by the user.
3. The APP personal data security detection scoring method according to claim 1, wherein the step 2 specifically includes: acquiring the mandatory asking condition of the APP for the privacy authority and the APP information by analyzing the android manifest. And acquiring the SDK information.
4. The APP personal data security detection scoring method according to claim 3, wherein the step 2 further comprises: circularly traversing the file directory, performing collision matching on file directory data and built-in SDK dictionary database data, and obtaining SDK information related to integration according to a matching result and SDK information obtained by analyzing an android manifest.
Correspondingly, step 4 further includes: the SDK information related to the integration is taken as a risk element.
5. The APP personal data security detection scoring method according to claim 1, further comprising: the number of deployments of probe detection engines; if the single machine is deployed, distributing the apk packets needing to be detected to the single detection engine one by one; and if the cluster deployment is carried out, dynamically distributing the apk packets needing to be detected to each detection engine.
6. The APP personal data security detection scoring method in claim 1, further comprising after step 4: and generating a detection report, and sending the detection report to a user or displaying the detection report by adopting a corresponding sending mode according to the type of the user.
7. The utility model provides a APP personal data safety inspection grading device which characterized in that includes:
the apk packet acquisition module is used for acquiring an apk packet to be detected;
the apk packet analysis module is used for decompressing and decompiling the to-be-detected apk packet to obtain the mandatory access condition of the APP to the privacy authority and the APP information; the privacy authority comprises one or more of address book access, short message access, camera access, file operation/photo album access, recording access, identity card information acquisition and information push; the APP information comprises a name and a version number;
the complaint report information query module is used for acquiring complaint report information aiming at the APP according to the APP information;
and the detection module is used for calculating the risk value of the APP by taking the mandatory asking condition and the complaint report information of each privacy authority as risk elements.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211656180.XA CN115859360B (en) | 2022-12-22 | APP personal data security detection scoring device and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211656180.XA CN115859360B (en) | 2022-12-22 | APP personal data security detection scoring device and method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN115859360A true CN115859360A (en) | 2023-03-28 |
| CN115859360B CN115859360B (en) | 2024-05-10 |
Family
ID=
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107705124A (en) * | 2017-09-14 | 2018-02-16 | 华中科技大学 | Mobile payment Environmental security check and evaluation system and method based on threat diagram |
| CN108090359A (en) * | 2018-01-05 | 2018-05-29 | 广东小天才科技有限公司 | A kind of application program monitoring method and application server |
| CN110008687A (en) * | 2019-02-19 | 2019-07-12 | 阿里巴巴集团控股有限公司 | The processing method and processing device of risk application |
| CN112073584A (en) * | 2019-08-27 | 2020-12-11 | 烟台中科网络技术研究所 | Risk assessment method for App to collect personal sensitive information of user |
| CN112884258A (en) * | 2019-11-29 | 2021-06-01 | 中国电信股份有限公司 | Method and device for detecting application risk |
| CN113157210A (en) * | 2021-04-16 | 2021-07-23 | 深圳季连科技有限公司 | Privacy permission transfer method based on APP function |
| CN113672914A (en) * | 2021-08-23 | 2021-11-19 | 郑州云智信安安全技术有限公司 | Risk assessment method and device for APP personal data security |
| WO2021237075A1 (en) * | 2020-05-21 | 2021-11-25 | OneTrust, LLC | Data processing systems and methods for automatic discovery and assessment of mobile software development kits |
| CN114021142A (en) * | 2021-11-03 | 2022-02-08 | 广州链安科技有限公司 | Android application program vulnerability detection method |
| CN114386018A (en) * | 2022-01-19 | 2022-04-22 | 平安科技(深圳)有限公司 | Permission prompting method and device, computer equipment and medium |
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107705124A (en) * | 2017-09-14 | 2018-02-16 | 华中科技大学 | Mobile payment Environmental security check and evaluation system and method based on threat diagram |
| CN108090359A (en) * | 2018-01-05 | 2018-05-29 | 广东小天才科技有限公司 | A kind of application program monitoring method and application server |
| CN110008687A (en) * | 2019-02-19 | 2019-07-12 | 阿里巴巴集团控股有限公司 | The processing method and processing device of risk application |
| CN112073584A (en) * | 2019-08-27 | 2020-12-11 | 烟台中科网络技术研究所 | Risk assessment method for App to collect personal sensitive information of user |
| CN112884258A (en) * | 2019-11-29 | 2021-06-01 | 中国电信股份有限公司 | Method and device for detecting application risk |
| WO2021237075A1 (en) * | 2020-05-21 | 2021-11-25 | OneTrust, LLC | Data processing systems and methods for automatic discovery and assessment of mobile software development kits |
| CN113157210A (en) * | 2021-04-16 | 2021-07-23 | 深圳季连科技有限公司 | Privacy permission transfer method based on APP function |
| CN113672914A (en) * | 2021-08-23 | 2021-11-19 | 郑州云智信安安全技术有限公司 | Risk assessment method and device for APP personal data security |
| CN114021142A (en) * | 2021-11-03 | 2022-02-08 | 广州链安科技有限公司 | Android application program vulnerability detection method |
| CN114386018A (en) * | 2022-01-19 | 2022-04-22 | 平安科技(深圳)有限公司 | Permission prompting method and device, computer equipment and medium |
Non-Patent Citations (6)
| Title |
|---|
| 岳倩;: "移动互联网APP应用安全评估模型", 沈阳航空航天大学学报, no. 05, pages 68 - 73 * |
| 彭守镇;: "基于模糊神经网络的恶意APP软件动态检测技术研究", 现代电子技术, no. 02, pages 49 - 52 * |
| 曹勇;李军虎;陈晓升;: "基于静态分析的APK安全检测系统的设计与实现", 计算机与数字工程, no. 10, pages 2146 - 2150 * |
| 胡英杰: "基于静态污点分析的Android隐私泄露检测方法研究", 中国优秀硕士学位论文全文数据库, no. 07, pages 138 - 6 * |
| 赵波 等: "Android 应用程序个人信息安全量化评估模型研究", 通信技术, vol. 53, no. 08, pages 2019 - 2025 * |
| 闫梅;彭新光;: "基于Android安全机制的权限检测系统", 计算机工程与设计, no. 03, pages 854 - 858 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Jansen et al. | Guidelines on cell phone forensics | |
| CN107729352B (en) | Page resource loading method and terminal equipment | |
| Gamba et al. | An analysis of pre-installed android software | |
| CN107450941B (en) | Automatic packaging method, device, storage medium and computer equipment | |
| CN106302445B (en) | Method and apparatus for handling request | |
| JP2019501436A (en) | System and method for application security and risk assessment and testing | |
| CN107169726B (en) | Two-dimensional code attendance card punching method and device | |
| CN105912353B (en) | Application program packaging method and device | |
| US11310238B1 (en) | System and method for retrieval and analysis of operational data from customer, cloud-hosted virtual resources | |
| CN104182681B (en) | Hook-based iOS (iPhone operating system) key behavior detection device and detection method thereof | |
| CN113177205B (en) | Malicious application detection system and method | |
| CN112560090B (en) | Data detection method and device | |
| CN103746992A (en) | Reverse-based intrusion detection system and reverse-based intrusion detection method | |
| CN112711770A (en) | Sensitive behavior blocking method, device, terminal and storage medium | |
| CN104239798B (en) | Mobile terminal, server end in mobile office system and its virus method and system | |
| JP2012022380A (en) | Log extraction system and program | |
| CN115859360A (en) | APP personal data security detection scoring device and method | |
| CN114020649A (en) | Quality inspection result verification method, system, test equipment and storage medium | |
| CN111159712B (en) | Detection method, device and storage medium | |
| CN116303041A (en) | Distributed test method and system | |
| CN109495561B (en) | Application program downloading method, device, terminal and storage medium | |
| CN115859360B (en) | APP personal data security detection scoring device and method | |
| CN114938466B (en) | Internet television application monitoring system and method | |
| CN108737350B (en) | Information processing method and client | |
| CN110830321A (en) | Website detection scheduling method and device, storage medium and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information |
Address after: Building 9, No. 186 Heyang Road, High tech Industrial Development Zone, Zhengzhou City, Henan Province, 450001 Applicant after: Zhengzhou Yunzhi Xin'an Security Technology Co.,Ltd. Address before: 450001 Floor 3, Building A, Building 2, No. 186 Heyang Road, Zhengzhou Hi tech Industrial Development Zone, Henan Province Applicant before: Zhengzhou Yunzhi Xin'an Security Technology Co.,Ltd. |
|
| CB02 | Change of applicant information | ||
| GR01 | Patent grant |