SACH: A Tool for Assisting Secure Android Application Development

被引:0
|
作者
Abernathy, Aakiel [1 ]
Yuan, Xiaohong [1 ]
Hill, Edward [1 ]
Xu, Jinsheng [1 ]
Bryant, Kelvin [1 ]
Williams, Kenneth [1 ]
机构
[1] North Carolina Agr & Tech State Univ, Dept Comp Sci, Greensboro, NC 27401 USA
来源
SOUTHEASTCON 2017 | 2017年
基金
美国国家科学基金会;
关键词
Android application development; secure coding; CERT [!text type='Java']Java[!/text] secure coding rules; INFORMATION LEAKAGE;
D O I
暂无
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
To mitigate the risk of attacks to mobile applications, it is important for mobile application developers to develop secure mobile applications. There have been tools that statically analyze the mobile applications to determine whether there are data leakage or access control vulnerabilities The Software Engineering Institute at Carnegie Melon University published CERT Java secure coding rules applicable to developing android applications. This paper describes SACH (Secure Android Coding Helper) - a tool we implemented to help developers identify security vulnerabilities in Android application. The tool analyzes Android application source code to detect violations of CERT Java secure coding rules. This tool will help Android developers to write Android code that comply with CERT Java secure coding rules. It can also be used in the classroom to teach students about Android secure coding.
引用
收藏
页数:4
相关论文
共 50 条
  • [1] Effect of the Application of TEA Algorithm on the Development of Secure Phone Application Android Smartphones
    Setyawan, Ryan Ari
    Selo
    Hantono, Bimo Sunarfri
    1ST INTERNATIONAL CONFERENCE ON ADVANCE AND SCIENTIFIC INNOVATION, 2019, 1175
  • [2] Redesigning a Tool for Secure Android Coding with Accessibility
    Olaley, Bisoye
    Yuan, Xiaohong
    Doss, Christopher C.
    Ford, Kenneth
    IEEE SOUTHEASTCON 2018, 2018,
  • [3] An Android Application to Secure Text Messages
    Demirol, Doygun
    Das, Resul
    Tuna, Gurkan
    2017 INTERNATIONAL ARTIFICIAL INTELLIGENCE AND DATA PROCESSING SYMPOSIUM (IDAP), 2017,
  • [4] Development of Automatic Evaluation Tool for Mobile Accessibility for Android Application
    Park, Eunju
    Han, Sungjun
    Bae, Hogon
    Kim, Raekyung
    Lee, Seungjae
    Lim, Daejune
    Lim, Hankyu
    2019 4TH INTERNATIONAL CONFERENCE ON SYSTEMS OF COLLABORATION BIG DATA, INTERNET OF THINGS & SECURITY (SYSCOBIOTS 2019), 2019, : 89 - 94
  • [5] MQTTSA: A Tool for Automatically Assisting the Secure Deployments of MQTT brokers
    Palmieri, Andrea
    Prem, Paolo
    Ranise, Silvio
    Morelli, Umberto
    Ahmad, Tahir
    2019 IEEE WORLD CONGRESS ON SERVICES (IEEE SERVICES 2019), 2019, : 47 - 53
  • [6] ArmorDroid: A Rule-Set Customizable Plugin for Secure Android Application Development
    Cong-Binh Le
    Bao-Thi Nguyen-Le
    Phuoc-Loc Truong
    Minh-Triet Tran
    Anh-Duy Tran
    PROCEEDINGS OF THE 20TH INTERNATIONAL CONFERENCE ON SECURITY AND CRYPTOGRAPHY, SECRYPT 2023, 2023, : 634 - 641
  • [7] Assisting the Development of Secure Mobile Apps with Natural Language Processing
    Liu, Xueqing
    2018 IEEE SYMPOSIUM ON VISUAL LANGUAGES AND HUMAN-CENTRIC COMPUTING (VL/HCC), 2018, : 279 - 280
  • [8] Accessing Secure Data on Android Through Application Analysis
    Buurke, Richard
    Nhien-An Le-Khac
    DIGITAL FORENSICS AND CYBER CRIME, ICDF2C 2021, 2022, 441 : 93 - 108
  • [9] A secure IRB system for assisting the development of intelligent medical devices
    Hsu, Chien-Lung
    Tseng, Kevin C.
    Chuang, Yu-Hao
    EXPERT SYSTEMS WITH APPLICATIONS, 2012, 39 (16) : 12512 - 12521
  • [10] Development of the Android-based Secure Communication Device
    Jevremovic, Aleksandar
    Veinovic, Mladen
    2015 12TH INTERNATIONAL CONFERENCE ON TELECOMMUNICATIONS IN MODERN SATELLITE, CABLE AND BROADCASTING SERVICES (TELSIKS), 2015, : 385 - 388
12345