To protect the Android-powered smartphones, a security reinforcement technology based on mandatory access control is proposed. It is implemented as follows: first, a platform-independent mandatory access control framework is added to the Android kernel; then, security attributes are attached to system objects; finally, a set of fine-grained access rules are made to control applications' permissions. The effectiveness of the technology is proved through the test in an emulator environment.