移动设备安全问题与对策概览

159 浏览量更新于2024-08-28 收藏 182KB PDF 举报

"移动设备安全问题及对策概览" 本文是一篇关于移动设备安全问题及其对策的研究论文，由天津大学计算机科学与技术学院的Ting Zhao、Gang Zhang和Lei Zhang撰写。随着移动设备的普及，移动安全越来越受到关注。论文主要探讨了恶意攻击，特别是通过蓝牙进行的攻击，以及在不同操作系统（如Blackberry OS、iOS、Android OS和Windows Phone）上的恶意软件问题，这些问题可能导致个人隐私信息的频繁泄露。关键词包括：移动安全、信息泄露、恶意软件、恶意攻击以及对策。 I. 引言在当今世界，手机已不仅仅用于通话和发送信息。它们更像个人电脑、摄像机、便携式媒体播放器、GPS等多功能设备。这些多样化的功能使得移动设备内部结构变得复杂，同时也增加了安全风险。 II. 移动设备安全问题 1. 恶意软件：类似于电脑病毒、僵尸网络和蠕虫，恶意软件是移动设备面临的主要威胁之一。这些恶意程序能够窃取用户数据，跟踪用户行为，甚至控制设备。 2. 蓝牙攻击：通过蓝牙连接，攻击者可以无需物理接触设备就能侵入系统，执行非法操作或传播恶意软件。 3. 操作系统漏洞：不同的移动操作系统有其独特的安全挑战。例如，Blackberry OS可能面临授权管理问题，iOS可能存在越狱后的安全问题，Android OS由于开源特性，容易遭受第三方应用的恶意利用，而Windows Phone可能因市场份额较小而被忽视，成为攻击者的目标。 III. 对策和防护措施 1. 系统更新和补丁：定期更新操作系统和应用程序，以修复已知的安全漏洞。 2. 安全软件：安装可靠的防病毒和安全应用，提供实时保护，检测并阻止恶意活动。 3. 用户教育：提高用户对安全威胁的认识，教导他们识别和避免潜在的危险行为，如不随意下载来源不明的应用。 4. 数据加密：对敏感信息进行加密，即使设备丢失或被盗，也能防止数据被滥用。 5. 蓝牙安全设置：限制蓝牙的可见性，避免自动连接，只与可信设备配对。 IV. 结论移动设备的安全问题需要多方面的应对策略，包括技术升级、用户行为改变和政策制定。随着技术的发展，新的威胁将持续出现，因此，持续研究和改进安全措施至关重要，以确保移动设备用户的隐私和数据安全。这篇论文为理解移动设备安全提供了全面的视角，对于开发者、安全专家以及普通用户来说，都是了解当前威胁和采取相应防护措施的重要参考。

An Overview of Mobile Devices Security Issues and

Countermeasures

Ting Zhao, Gang Zhang, Lei Zhang

School of Computer Science and Technology, Tianjin University

Tianjin, China

E-mail: zhaoting@tju.edu.cn, gzhang@tju.edu.cn, lzhang@tju.edu.cn

Abstract—Mobile security draws more attention while the mobile

device gains its popularity. Malwares just like viruses, botnet and

worms, become concerns since the frequently leakage of personal

information. This paper investigates malicious attacks through

Bluetooth and malwares in different operating systems of mobile

devices such as Blackberry OS, iOS, Android OS and Windows

Phone. Besides, countermeasures of vulnerability are also

discussed to protect the security and privacy of mobile devices.

Keywords-mobile security; information leakage; malware;

malicious attack; countmeasures

I. INTRODUCTION

In today’s world, mobile phones are not simply for calling

and sending information. They can be treated as a personal

computer, video camera, portable media player, GPS, and more.

Variety of functions naturally leads to sophisticated internal

constructs in mobile devices, and at the same time makes them

more vulnerable to bugs. Viruses, worms, and other malwares

are always danger since they can steal information and render

devices useless. Besides, as the mobile devices can be

connected to other equipments through Bluetooth or USB

interface, the presence of one phone carrying virus can become

a threaten to the safety of other mobile devices.

To tackle the security issues, we have to understand

different concepts of security. As defined by [1], malware is a

software designed to infiltrate a computer system without the

owner's informed consent. The expression is a general term

first used by computer professionals, referring to various forms

of hostile, intrusive, or annoying software or program codes.

When applying the term to mobile devices, it essentially refers

to the same thing, but is harder to tackle. There are many

different operating systems, and each one owns diverse

functionality, so it is hard to develop powerful antivirus

software running on all types of operating systems to resist

kinds of viruses. It once has been thought that the high level of

complexity a virus achieves can embarrass itself from creating

a large number of viruses. This misguided security ignorance

once resulted in fundamental security risks for the operating

systems.

II. H

ISTORY

As mentioned in [2], Cabir, a computer worm developed in

2004 is designed to infect mobile phones running in the

Symbian operating system [3]. It is believed to be the first

worm that infected mobile phones. When a phone is infected

by Cabir, the message “Caribe” is shown on the phone's display,

and will appear every time the phone is turned on. Through

Bluetooth technology, the worm then attempts to infect other

phones. The worm was not sent out into the wild, but sent

directly to anti-virus firms who believed Cabir in its current

state was harmless to mobile phones. The worm was developed

by a group of international hackers who call themselves 29A.

They created a “proof of concept” worm in order to catch

attention. The worm can attack and replicate on Bluetooth

enabled Series 60 phones that support the "Object Push Profile".

It can also infect non-Symbian phones, desktop computers and

even printers.

Even though the Cabir is credited as the first mobile device

virus, it was only regarded as a concept virus. All the virus did

was just to show that a virus could be created based on the

Symbian OS. The virus appearance spurs the developers of the

operating system, so the security level of the operating system

can be improved. Unfortunately, the source virus codes were

leaked into the Internet. Once being deliberately modified, it

can lead the virus more malicious than originally intended.

About a month after the cabir worm struck, the next mobile

virus, called “Duts” appeared. Duts was the first virus for the

windows CE platform, and the first file infector for mobile

devices. The Duts virus would infect the executables in the root

directory of the device if the user unconsciously permitted.

Soon after Duts, the Brador virus came out. The Brador virus

was the first backdoor virus for mobile devices. Backdoor is an

open port which waiting a remote host to connect to itself. So

the viruses can get into the system through the backdoor

without being discovered.

After the Brador virus, there were a large number of viruses

for the Symbian OS, most of which are Trojans. The reason

why so many Trojans appear is that the operating system

allows the unlimited download of games and other programs.

During the loading process, related codes were altered to

include the virus that will change customizations on the phone,

and render it useless.

In 2009, Kaspersky Lab announced that the first malicious

program, named Trojan-SMS. AndroidOS FakePlayer, had

been detected for smart phones running on Google’s Android

OS, and had already infected a number of mobile devices. The

new malicious program penetrates smart phones running