中文摘要：

目前,iOS安全研究主要在应用程序安全性检测、安全模型剖析、漏洞和数据保护机制分析等方面,对于iOS备份机制的安全性缺乏深入系统地研究。备份是iOS系统中惟一合法获得设备内部数据的渠道,但是备份数据缺少必要防护措施,用户数据安全和隐私受到潜在威胁。通过描述备份分析的方法,进而对备份存储数据进行深入理解,发现其存在严重隐私威胁,忽视对第三方应用程序数据信息的保护,最后评估了备份机制潜在的安全影响并给出提高备份安全性的建议。

英文摘要：

The security research of iOS mainly focuses on detection application security,privacy vulnerabilities,analysis of security model,and data protection mechanism,etc.,while less in-depth study on backup mechanism security.Backup is the only certificated channel for acquisition of the data inside iOS devices.However,the transmitted data is short of necessary protective measures,thus leading to security and privacy threats.The method for backup analysis is described,and in-depth understanding of the backup data reveals that the serious privacy threats exist in iOS backup the protections of the third-party application data neglected.Finally,potential security vulnerabilities of the back-up mechanism are evaluated,and the security suggestions for protection of backup data proposed.