Research on Static Analysis Technology of Android Application Security Defects

被引:0
|
作者
Chen, Lu [1 ]
Liu, Xing [2 ]
Ma, Yuan-yuan [1 ]
Shi, Cong-cong [1 ]
Li, Ni-ge [1 ]
机构
[1] Global Energy Interconnect Res Inst, Inst Informat & Commun, Nanjing 210003, Jiangsu, Peoples R China
[2] NARI Grp Corp, Informat Commun Technol Branch, Nanjing 210003, Jiangsu, Peoples R China
来源
2016 INTERNATIONAL CONFERENCE ON ELECTRICAL ENGINEERING AND AUTOMATION (ICEEA 2016) | 2016年
关键词
Android application; Static analysis; Security detects; Security vulnerabilities; Visitor pattern;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
With the rapid development of mobile Internet, the number of smart phone users is increasing, especially android smart phone users, the security defects of android application emerge in endlessly. In this paper, android application security defects are divided into three, include vulnerabilities defects, components defects and configuration defects. Focus these security defects, first static analysis the bytecode file, then use the resolution android bytecode as an inspection vehicle, design detector for each species vulnerability based on visitor pattern. Finally, part of the code is achieved, practice has proved that the scheme can meet Android application security defects detection requirements in the static testing.
引用
收藏
页数:8
相关论文
共 50 条
  • [31] Sensitivity Analysis of Static Features for Android Malware Detection
    Moghaddam, Samaneh Hosseini
    Abbaspour, Maghsood
    2014 22ND IRANIAN CONFERENCE ON ELECTRICAL ENGINEERING (ICEE), 2014, : 920 - 924
  • [32] Reevaluating Android Permission Gaps with Static and Dynamic Analysis
    Wang, Haoyu
    Guo, Yao
    Tang, Zihao
    Bai, Guangdong
    Chen, Xiangqun
    2015 IEEE GLOBAL COMMUNICATIONS CONFERENCE (GLOBECOM), 2015,
  • [33] A new tool for static and dynamic Android malware analysis
    Martin, A.
    Lara-Cabrera, R.
    Camacho, D.
    DATA SCIENCE AND KNOWLEDGE ENGINEERING FOR SENSING DECISION SUPPORT, 2018, 11 : 509 - 516
  • [34] Android Apps:Static Analysis Based on Permission Classification
    Zhenjiang Dong
    Hui Ye
    Yan Wu
    Shaoyin Cheng
    Fan Jiang
    ZTECommunications, 2013, 11 (01) : 62 - 66
  • [35] HybriDroid: Static Analysis Framework for Android Hybrid Applications
    Lee, Sungho
    Dolby, Julian
    Ryu, Sukyoung
    2016 31ST IEEE/ACM INTERNATIONAL CONFERENCE ON AUTOMATED SOFTWARE ENGINEERING (ASE), 2016, : 250 - 261
  • [36] Android security assessment: A review, taxonomy and research gap study
    Garg, Shivi
    Baliyan, Niyati
    COMPUTERS & SECURITY, 2021, 100
  • [37] Practical static analysis of context leaks in Android applications
    Toffalini, Flavio
    Sun, Jun
    Ochoa, Martin
    SOFTWARE-PRACTICE & EXPERIENCE, 2019, 49 (02) : 233 - 251
  • [38] Design and Implementation of Security Patrol Robot using Android Application
    Mashrik, Tahzib
    Zunair, Hasib
    Karin, Maofic Farhan
    2017 ASIA MODELLING SYMPOSIUM (AMS 2017) / 11TH INTERNATIONAL CONFERENCE ON MATHEMATICAL MODELLING & COMPUTER SIMULATION, 2017, : 77 - 82
  • [39] Static Back-Stack Transition Analysis for Android
    Liu, Ao
    Guo, Chenkai
    Wang, Weijing
    Qiu, Yu
    Xu, Jing
    IEEE ACCESS, 2019, 7 : 110781 - 110793
  • [40] Myths and Facts About Static Application Security Testing Tools: An Action Research at Telenor Digital
    Oyetoyan, Tosin Daniel
    Milosheska, Bisera
    Grini, Mari
    Cruzes, Daniela Soares
    AGILE PROCESSES IN SOFTWARE ENGINEERING AND EXTREME PROGRAMMING, XP 2018, 2018, 314 : 86 - 103
12345