목차

1. 서론 ··············································································································· 1
2. 금융권 안티바이러스 적용 현황 ················································ 5
2.1 금융권 안드로이드 안티바이러스 ···································································· 5
2.1.1 국내 금융권 안드로이드 안티바이러스 사용 현황 ································· 5
2.1.2 해외 금융권 안드로이드 안티바이러스 사용 현황 ································· 7
2.1.3 안드로이드 안티바이러스의 주요 기능 ···················································· 8
2.1.4 안드로이드 안티바이러스 사용자 인식 ···················································· 9
2.2 국내 모바일 뱅킹 보안 관련 법규 현황 ························································ 10
2.2.1 스마트폰 금융안전대책 이행실태 체크리스트 ······································ 11
2.2.2 전자금융거래법 시행령 ············································································· 15
2.2.3 전자금융감독규정 ······················································································· 17
2.2.4 전자금융거래법 ··························································································· 18
2.2.5 금융 IT 보안 자율규제 방안 ··································································· 20
3. 배경지식 ································································································· 21
3.1 관련연구 ·········································································································· 21
3.2 안드로이드 운영체제의 특징 ············································································ 22
3.3 안드로이드 분석 과정 및 도구 ········································································ 23
3.4 언어의 분류 ········································································································· 25
3.4.1 Dex 파일 ····································································································· 25
3.4.2 Smali 파일 ·································································································· 25
3.5 국내 금융권 안드로이드 안티바이러스 연동 구조 ······································· 28
4. 안티바이러스 우회 실험 및 결과 ············································································ 29
4.1 정적분석 방법 ····································································································· 32
4.1.1 String id 값 추출 ····················································································· 32
4.1.2 Smali 구조 분석 ························································································ 33
4.1.3 우회 코드 수정 ··························································································· 34
4.2 동적분석 방법 ····································································································· 35
4.2.1 보안 검사 예상 지점 클래스 추출 ························································ 35
4.2.2 해당 클래스 내 메소드 분석 ··································································· 37
4.3 실험결과 ········································································································· 38
5. 개선방안 ···············································································································41
5.1 안티바이러스 도입 시 개선방안 ······································································ 42
5.1.1 리소스 암호화 ··························································································· 42
5.1.2 제어흐름 난독화 강화 ············································································· 44
5.1.3 무결성 검증 지점 확대 ··········································································· 45
5.1.4 평가 체크리스트 항목 점검 ··································································· 46
5.2 안티바이러스 폐지 시 개선방안 ······································································ 47
5.2.1 미국 금융권 모바일 뱅킹 취약점 체크리스트 ···································· 47
5.2.2 뉴욕주 금융기관에 대한 사이버보안규정 ············································ 49
5.2.3 국내 모바일 안티바이러스 도입 현황에 대한 문제점 ······················· 52
5.2.4 국내 모바일 안티바이러스 도입 현황에 대한 개선방안 ··················· 53
6. 결론 ······································································································· 55