关键词: 券商APP, 用户隐私, 第三方SDK, Android安全沙箱, 隐私威胁管控

Abstract: In order to solve the problem that thirdparty SDKs in brokerage APPs may violate user privacy, this paper proposes a mobile terminal security sandbox technology based on the research of Android security sandbox technology. By combining the security sandbox management and control strategy, it runs on the APP user side. In this state, it realizes comprehensive monitoring and blocking capabilities for three types of APP privacy threat behaviors, such as privacy collection, communication outbound, and component hot update, so as to realize the management and control of privacy threat behaviors generated by thirdparty SDKs that exceed the APP privacy policy, and improve the overall privacy threat management capability and personal information protection level of the brokerage APP.

Key words: brokerage APP, user privacy, thirdparty SDK, Android security sandbox, privacy threat management and control