Article Preview
TopIntroduction
Nowadays, smartphone is widely used in large variety of areas, such as communication, shopping online, map navigation, getting latest news, etc. which make it an integral part of people’s lives. Thus, a great deal of privacy information in smartphones, such as payment accounts, bank statement, personal photo, location information, address book and so on, become one of our most valuable treasure. Accordingly, malicious attacks on the privacy information of our smartphone are growing fast year by year. As the most widely used intelligent mobile operating system on market, Android is the primary target of all kinds of malware attacks (Xu et al., 2016). Considering the great value of privacy information stored in our phones, it is of great significance to investigate on different measures of improving the security level of Android devices.
To protect users’ privacy information, researchers adopt a method of multi-system isolation in Android devices. It provides multiple running environments on a single physical device, which are independent and do not interfere with each other. By providing isolated environment for secret information, it can protect users’ privacy effectively. In recent study (Huber et al., 2015), the authors propose a security architecture for Android devices based on operating system-level virtualization technology. Nevertheless, the security architecture requires deep customization for Android system, making it very complicated to implement. The “Platinum” phones of Coolpad use hardware isolation technique to achieve dual-system through two different ROMs (Techweb, 2017). However, the technique requires hardware customization, which is not fit for common models. In general, the traditional multi-system methods mainly focus on providing an independent and secure operating environment for users’ privacy information, but it also tells attackers that users’ privacy information is stored in the security system. In fact, there are very few ways to cover up the running environment of multi-system. So, it is easy to arouse suspicion when multi-system technology is used as privacy protection method. Besides, the switch of multi-system is usually complicated which may seriously impact users’ experience.
In addition, smartphone manufactures design a variety of confidential cabinets and private spaces to store users’ privacy information. For example, the mobile phone of Huawei provides a confidential cabinets function. Users can use it to store secret files like pictures, audio, video and so on. Only users who know the password of confidential cabinets will be able to see the secret files, but it tells attackers the existence and exact position of secret information. Once attackers crack the password of the confidential cabinets, he can directly obtain users’ secret information.
In this paper, we propose a user identity hiding method based on Android device to protect users’ privacy information. The method implements dual-system on mobile phone based on the multi-user mechanism of Android system. Compared with the multi-system of mobile phone with virtualization technology, our method is simple to implement and has little impact on system performance. Compared with hardware isolation technology of the “Platinum” phones, our method is implemented on software level. So it is independent to specific hardware devices, which makes it more flexible and applicable to different makers of smartphones. Furthermore, our dual-system method can make the storage of the users’ regular information and privacy information further isolated from each other. The method constructs a hidden user identity, which is invisible to normal user. One can deal with privacy information under hidden user identity while processing regular information under normal user identity. Even malware detection cannot find users’ privacy information through conventional detection methods. In general, this paper’s contributions are: