Container‐Based Privacy Preserving Scheme for Android Applications

Abstract

An application layer privacy data protection scheme combining dynamic and static analysis is proposed. Android component life cycle and system calls are first studied, and the taint propagation path under the cross-component scenario in static analysis is optimized. Based on the static analysis, a privacy preserving container is designed and implemented on both the Framework layer and the Native layer of Android. The scheme generates a privacy protection policy file by constructing leakage paths for privacy data propagation in Android applications, and monitors privacy leakage in the running environment of the target application according to the policy file. Experiments show that the proposed scheme can effectively protect user privacy while running third-party applications.