Research on Static Analysis Technology of Android Application Security Defects

被引:0
|
作者
Chen, Lu [1 ]
Liu, Xing [2 ]
Ma, Yuan-yuan [1 ]
Shi, Cong-cong [1 ]
Li, Ni-ge [1 ]
机构
[1] Global Energy Interconnect Res Inst, Inst Informat & Commun, Nanjing 210003, Jiangsu, Peoples R China
[2] NARI Grp Corp, Informat Commun Technol Branch, Nanjing 210003, Jiangsu, Peoples R China
来源
2016 INTERNATIONAL CONFERENCE ON ELECTRICAL ENGINEERING AND AUTOMATION (ICEEA 2016) | 2016年
关键词
Android application; Static analysis; Security detects; Security vulnerabilities; Visitor pattern;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
With the rapid development of mobile Internet, the number of smart phone users is increasing, especially android smart phone users, the security defects of android application emerge in endlessly. In this paper, android application security defects are divided into three, include vulnerabilities defects, components defects and configuration defects. Focus these security defects, first static analysis the bytecode file, then use the resolution android bytecode as an inspection vehicle, design detector for each species vulnerability based on visitor pattern. Finally, part of the code is achieved, practice has proved that the scheme can meet Android application security defects detection requirements in the static testing.
引用
收藏
页数:8
相关论文
共 50 条
  • [21] Kunai: A static analysis framework for Android apps
    Blazquez, Eduardo
    Tapiador, Juan
    SOFTWAREX, 2023, 22
  • [22] Static Analysis of Memory Leak in Android Applications
    Zhou, Di
    Fu, Zhengyu
    PROCEEDINGS OF THE 4TH INTERNATIONAL CONFERENCE ON MECHATRONICS, MATERIALS, CHEMISTRY AND COMPUTER ENGINEERING 2015 (ICMMCCE 2015), 2015, 39 : 1023 - 1027
  • [23] Static Analysis of Context Leaks in Android Applications
    Toffalini, Flavio
    Sun, Jun
    Ochoa, Martin
    2018 IEEE/ACM 40TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING - SOFTWARE ENGINEERING IN PRACTICE TRACK (ICSE-SEIP 2018), 2018, : 215 - 224
  • [24] AN APP BASED ON STATIC ANALYSIS FOR ANDROID RANSOMWARE
    Kanwal, Meet
    Thakur, Sanjeev
    2017 IEEE INTERNATIONAL CONFERENCE ON COMPUTING, COMMUNICATION AND AUTOMATION (ICCCA), 2017, : 813 - 818
  • [25] Improving Android Application Security for Intent Based Attacks
    Khadiranaikar, Babu
    Zavarsky, Pavol
    Malik, Yasir
    2017 8TH IEEE ANNUAL INFORMATION TECHNOLOGY, ELECTRONICS AND MOBILE COMMUNICATION CONFERENCE (IEMCON), 2017, : 62 - 67
  • [26] Application of clustering methods for analyzing the security of Android applications
    Pavlenko E.Y.
    Yarmak A.V.
    Moskvin D.A.
    Automatic Control and Computer Sciences, 2017, 51 (8) : 867 - 873
  • [27] Call Graph Soundness in Android Static Analysis
    Samhi, Jordan
    Just, Rene
    Bissyande, Tegawende F.
    Ernst, Michael D.
    Klein, Jacques
    PROCEEDINGS OF THE 33RD ACM SIGSOFT INTERNATIONAL SYMPOSIUM ON SOFTWARE TESTING AND ANALYSIS, ISSTA 2024, 2024, : 945 - 957
  • [28] Reflection-Aware Static Analysis of Android Apps
    Li, Li
    Bissyande, Tegawende F.
    Octeauo, Damien
    Klein, Jacques
    2016 31ST IEEE/ACM INTERNATIONAL CONFERENCE ON AUTOMATED SOFTWARE ENGINEERING (ASE), 2016, : 756 - 761
  • [29] Static and Dynamic Integrated Analysis Scheme for Android Malware
    Chun-Hao Yung
    Wen-Shenq Juang
    Journal of Electronic Science and Technology, 2017, 15 (03) : 246 - 250
  • [30] Detecting Software Vulnerabilities in Android Using Static Analysis
    Dhaya, R.
    Poongodi, M.
    2014 INTERNATIONAL CONFERENCE ON ADVANCED COMMUNICATION CONTROL AND COMPUTING TECHNOLOGIES (ICACCCT), 2014, : 915 - 918
12345