IMGDroid: A Static Analyzer for Detecting Image Loading Defects in Android Applications

被引:0
|
作者
Song, Wei [1 ]
Han, Mengqi [1 ]
Huang, Jeff [2 ]
机构
[1] Nanjing Univ Sci & Tech, Sch Comp Sci & Engn, Nanjing, Peoples R China
[2] Texas A&M Univ, Parasol Lab, College Stn, TX USA
来源
2021 IEEE/ACM 43RD INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING: COMPANION PROCEEDINGS (ICSE-COMPANION 2021) | 2021年
关键词
Android apps; image loading defects; static analysis;
D O I
10.1109/ICSE-Companion52605.2021.00069
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
We summarize five anti-patterns of image loading defects in Android apps, including image passing by intent, image decoding without resizing, local image loading without permission, repeated decoding without caching, and image decoding in UI thread. Based on the anti-patterns, we propose a static analyzer, IMGDroid, to automatically and effectively detect such defects. Readers can access our artifacts from GitHub and Zenodo, and can run IMGDroid to detect image loading defects in Android apps; so we are applying for Reusable and Available Badges. We implement IMGDroid in Java, and perform the experiments on a computer with Windows 10, JDK 1.8, and Android 7.1.1. Therefore, reviewers are required to be familiar with Java and proficient in using Eclipse.
引用
收藏
页码:164 / 165
页数:2
相关论文
共 50 条
  • [41] Understanding and Detecting Wake Lock Misuses for Android Applications
    Liu, Yepang
    Xu, Chang
    Cheung, Shing-Chi
    Terragni, Valerio
    FSE'16: PROCEEDINGS OF THE 2016 24TH ACM SIGSOFT INTERNATIONAL SYMPOSIUM ON FOUNDATIONS OF SOFTWARE ENGINEERING, 2016, : 396 - 409
  • [42] PAcT: Detecting and Classifying Privacy Behavior of Android Applications
    Jain, Vijayanta
    Gupta, Sanonda Datta
    Ghanavati, Sepideh
    Peddinti, Sai Teja
    McMillan, Collin
    PROCEEDINGS OF THE 15TH ACM CONFERENCE ON SECURITY AND PRIVACY IN WIRELESS AND MOBILE NETWORKS (WISEC '22), 2022, : 104 - 118
  • [43] A Hybrid Framework for Detecting Repackaged Applications on the Android Market
    Rizvi, Syed
    Alden, Kieran
    Campbell, Shakir
    2019 INTERNATIONAL CONFERENCE ON SOFTWARE SECURITY AND ASSURANCE (ICSSA 2019), 2019, : 76 - 82
  • [44] nAdroid: Statically Detecting Ordering Violations in Android Applications
    Fu, Xinwei
    Lee, Dongyoon
    Jung, Changhee
    PROCEEDINGS OF THE 2018 INTERNATIONAL SYMPOSIUM ON CODE GENERATION AND OPTIMIZATION (CGO'18), 2018, : 62 - 74
  • [45] Detecting vulnerabilities in Android applications using event sequences
    Ratliff, Zachary B.
    Kuhn, D. Richard
    Ragsdale, Daniel J.
    2019 IEEE 19TH INTERNATIONAL CONFERENCE ON SOFTWARE QUALITY, RELIABILITY AND SECURITY (QRS 2019), 2019, : 159 - 166
  • [46] ServDroid: Detecting Service Usage Inefficiencies in Android Applications
    Song, Wei
    Zhang, Jing
    Huang, Jeff
    ESEC/FSE'2019: PROCEEDINGS OF THE 2019 27TH ACM JOINT MEETING ON EUROPEAN SOFTWARE ENGINEERING CONFERENCE AND SYMPOSIUM ON THE FOUNDATIONS OF SOFTWARE ENGINEERING, 2019, : 362 - 373
  • [47] Detecting Similar Components between Android Applications with Obfuscation
    Yuan, Li
    PROCEEDINGS OF 2016 5TH INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND NETWORK TECHNOLOGY (ICCSNT), 2016, : 186 - 190
  • [48] A Hybrid Malware Detecting Scheme for Mobile Android Applications
    Liu, Yu
    Zhang, Yichi
    Li, Haibin
    Chen, Xu
    2016 IEEE INTERNATIONAL CONFERENCE ON CONSUMER ELECTRONICS (ICCE), 2016,
  • [49] MonkeyDroid: Detecting Unreasonable Privacy Leakages of Android Applications
    Ma, Kai
    Liu, Mengyang
    Guo, Shanqing
    Ban, Tao
    NEURAL INFORMATION PROCESSING, PT III, 2015, 9491 : 384 - 391
  • [50] Droidrevealer: Automatically detecting Mysterious Codes in Android Applications
    Zhang, Xinyin
    Cao, Yuanye
    Yang, Mutian
    Wu, Jingzheng
    Luo, Tianyue
    Liu, Yueqin
    2017 IEEE CONFERENCE ON DEPENDABLE AND SECURE COMPUTING, 2017, : 535 - 536
12345