中文摘要：

针对智慧家居控制系统中基于Android系统轻型网关的敏感数据泄露问题，提出了一种基于Android本地库层污点传播和应用层控制的分层互连检测模型。通过在IPCBinder通信时标记污点，在待测应用进程调用本地网络套接字函数时检测污点，分析污点传播路径并计算泄露指数，实现对敏感数据泄露的跟踪检测。实验表明，该模型能够检测出各个敏感数据源以明文或密文方式的数据泄露，准确率达到93％以上，同时性能开销不超过1％，从而实现对Android轻型网关敏感数据泄露的有效检测，实用性强，并为之后相关研究提供了新方向。

英文摘要：

The light gateway based on Android system in intelligent home control system has the sensitive data leakage prob- lem. This paper proposed a hierarchical and interconnected detection model based on taint spread on Android native library layer and control on application layer. Through marking taint during the IPC Binder communication, it detected taint when the native network socket function called by the being tested application process, analyzed taint propagation path and calculated the leakage index, to realize the track of sensitive data leakage detection. The experiments show that the model can detect the sensitive data leakage in plain text or cipher text form of data breaches, accuracy can reach above 93% , at the same time per- formance overhead is not more than 1%. As a resuh, it realizes the effective detection of sensitive data leakage of Android light gateway, has strong practivity, and leads a new direction for related research in the future.