Research on Static Analysis Technology of Android Application Security Defects

被引:0
|
作者
Chen, Lu [1 ]
Liu, Xing [2 ]
Ma, Yuan-yuan [1 ]
Shi, Cong-cong [1 ]
Li, Ni-ge [1 ]
机构
[1] Global Energy Interconnect Res Inst, Inst Informat & Commun, Nanjing 210003, Jiangsu, Peoples R China
[2] NARI Grp Corp, Informat Commun Technol Branch, Nanjing 210003, Jiangsu, Peoples R China
来源
2016 INTERNATIONAL CONFERENCE ON ELECTRICAL ENGINEERING AND AUTOMATION (ICEEA 2016) | 2016年
关键词
Android application; Static analysis; Security detects; Security vulnerabilities; Visitor pattern;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
With the rapid development of mobile Internet, the number of smart phone users is increasing, especially android smart phone users, the security defects of android application emerge in endlessly. In this paper, android application security defects are divided into three, include vulnerabilities defects, components defects and configuration defects. Focus these security defects, first static analysis the bytecode file, then use the resolution android bytecode as an inspection vehicle, design detector for each species vulnerability based on visitor pattern. Finally, part of the code is achieved, practice has proved that the scheme can meet Android application security defects detection requirements in the static testing.
引用
收藏
页数:8
相关论文
共 50 条
  • [1] Android application vulnerabilities static mining technology
    Tang J.
    Liu J.
    Li R.
    Li W.
    Huazhong Keji Daxue Xuebao (Ziran Kexue Ban)/Journal of Huazhong University of Science and Technology (Natural Science Edition), 2016, 44 : 20 - 24
  • [2] THE STATIC DETECTION ANALYSIS TECHNOLOGY OF ANDROID SOURCE CODES
    Guo, Yanhui
    Yang, Lin
    Gao, Xiaomeng
    Wu, Kun
    PROCEEDINGS OF 2016 5TH IEEE INTERNATIONAL CONFERENCE ON NETWORK INFRASTRUCTURE AND DIGITAL CONTENT (IEEE IC-NIDC 2016), 2016, : 288 - 292
  • [3] Where Are We Looking for Security Concerns? Understanding Android Security Static Analysis
    Schmeelk, Suzanna
    PROCEEDINGS OF THE FUTURE TECHNOLOGIES CONFERENCE (FTC) 2019, VOL 2, 2020, 1070 : 467 - 483
  • [4] SANT: Static Analysis of Native Threads for Security Vetting of Android Applications
    Andarzian, Seyed Behnam
    Ladani, Behrouz Tork
    ISECURE-ISC INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 2022, 14 (01): : 13 - 25
  • [5] A Static Analysis Model for Implicit Information Leakage in Android Application
    Cao, Hongsheng
    Jiao, Jian
    Li, Denghui
    2018 IEEE 18TH INTERNATIONAL CONFERENCE ON COMMUNICATION TECHNOLOGY (ICCT), 2018, : 1133 - 1140
  • [6] REDDROID: Android Application Redundancy Customization Based on Static Analysis
    Jiang, Yufei
    Bao, Qinkun
    Wang, Shuai
    Liu, Xiao
    Wu, Dinghao
    2018 29TH IEEE INTERNATIONAL SYMPOSIUM ON SOFTWARE RELIABILITY ENGINEERING (ISSRE), 2018, : 189 - 199
  • [7] An Android Application Vulnerability Mining Method Based On Static and Dynamic Analysis
    Wang Chao
    Li Qun
    Wang XiaoHu
    Ren TianYu
    Dong JiaHan
    Guo GuangXin
    Shi EnJie
    PROCEEDINGS OF 2020 IEEE 5TH INFORMATION TECHNOLOGY AND MECHATRONICS ENGINEERING CONFERENCE (ITOEC 2020), 2020, : 599 - 603
  • [8] Static analysis of Android programs
    Payet, Etienne
    Spoto, Fausto
    INFORMATION AND SOFTWARE TECHNOLOGY, 2012, 54 (11) : 1192 - 1201
  • [9] Evaluating the Risk of Android Application: Design and Implementation of Static Analysis System
    Hsueh, Hsiang-Yuan
    Huang, Kun-Fu
    Wu, Wei-Ming
    Li, Chili-Lin
    2013 IEEE 6TH INTERNATIONAL CONFERENCE ON ADVANCED INFOCOMM TECHNOLOGY (ICAIT), 2013, : 236 - 237
  • [10] EstiDroid: Estimate API Calls of Android Applications Using Static Analysis Technology
    Fan, Wenhao
    Zhang, Daishuai
    Chen, Ye
    Wu, Fan
    Liu, Yuan'an
    IEEE ACCESS, 2020, 8 (08): : 105384 - 105398
12345