SACH: A Tool for Assisting Secure Android Application Development

被引:0
|
作者
Abernathy, Aakiel [1 ]
Yuan, Xiaohong [1 ]
Hill, Edward [1 ]
Xu, Jinsheng [1 ]
Bryant, Kelvin [1 ]
Williams, Kenneth [1 ]
机构
[1] North Carolina Agr & Tech State Univ, Dept Comp Sci, Greensboro, NC 27401 USA
来源
SOUTHEASTCON 2017 | 2017年
基金
美国国家科学基金会;
关键词
Android application development; secure coding; CERT [!text type='Java']Java[!/text] secure coding rules; INFORMATION LEAKAGE;
D O I
暂无
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
To mitigate the risk of attacks to mobile applications, it is important for mobile application developers to develop secure mobile applications. There have been tools that statically analyze the mobile applications to determine whether there are data leakage or access control vulnerabilities The Software Engineering Institute at Carnegie Melon University published CERT Java secure coding rules applicable to developing android applications. This paper describes SACH (Secure Android Coding Helper) - a tool we implemented to help developers identify security vulnerabilities in Android application. The tool analyzes Android application source code to detect violations of CERT Java secure coding rules. This tool will help Android developers to write Android code that comply with CERT Java secure coding rules. It can also be used in the classroom to teach students about Android secure coding.
引用
收藏
页数:4
相关论文
共 50 条
  • [21] An overview of android tv application development
    Matsuuchi R.
    Kyokai Joho Imeji Zasshi/Journal of the Institute of Image Information and Television Engineers, 2016, 70 (01): : 107 - 111
  • [22] Challenges in Android Wear Application Development
    Ahola, Jukka
    ENGINEERING THE WEB IN THE BIG DATA ERA, 2015, 9114 : 601 - 604
  • [23] The Android Application Development College Challenge
    Peng, Bin
    Yue, Jinming
    Chen Tianzhou
    2012 IEEE 14TH INTERNATIONAL CONFERENCE ON HIGH PERFORMANCE COMPUTING AND COMMUNICATIONS & 2012 IEEE 9TH INTERNATIONAL CONFERENCE ON EMBEDDED SOFTWARE AND SYSTEMS (HPCC-ICESS), 2012, : 1677 - 1681
  • [24] Transcriber: Development and use of a tool for assisting speech corpora production
    Barras, C
    Geoffrois, E
    Wu, ZB
    Liberman, M
    SPEECH COMMUNICATION, 2001, 33 (1-2) : 5 - 22
  • [25] Towards Greener Android Application Development
    Anwar, Hina
    2020 ACM/IEEE 42ND INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING: COMPANION PROCEEDINGS (ICSE-COMPANION 2020), 2020, : 170 - 173
  • [26] Computer Vision in Android Application Development
    Tuichiev, Shakhzod
    Prikhodchenko, Vlada
    PROCEEDINGS OF THE 2021 IEEE CONFERENCE OF RUSSIAN YOUNG RESEARCHERS IN ELECTRICAL AND ELECTRONIC ENGINEERING (ELCONRUS), 2021, : 719 - 723
  • [27] RepDroid: An Automated Tool for Android Application Repackaging Detection
    Yue, Shengtao
    Feng, Weizan
    Ma, Jun
    Jiang, Yanyan
    Tao, Xianping
    Xu, Chang
    Lu, Jian
    2017 IEEE/ACM 25TH INTERNATIONAL CONFERENCE ON PROGRAM COMPREHENSION (ICPC), 2017, : 132 - 142
  • [28] Secure Mobile Application Development
    Payne, Jeffery
    IT PROFESSIONAL, 2013, 15 (03) : 6 - 9
  • [29] An Application for End to End Secure Messaging Service on Android Supported Device
    Nayak, Somen
    Das, Surajit
    Das, Saikat
    Sarker, Siddharth
    Sarker, Preyoshi
    Dey, Aniket
    Sinha, Anirban
    Saha, Jyotirmoy
    Banerjee, Aniket
    Saha, Nabanit
    Chowdhury, Sugata
    Chowdhury, Debanjan
    Pradhan, Priyam
    Banerjee, Aniket
    Ali, Sk Azeem
    Saha, Abhijit
    Dey, Ratul
    Dey, Shopan
    2017 8TH IEEE ANNUAL INFORMATION TECHNOLOGY, ELECTRONICS AND MOBILE COMMUNICATION CONFERENCE (IEMCON), 2017, : 290 - 294
  • [30] Development and Reform of Android Mobile Application Development Curriculum
    Shao, Xiufeng
    Liu, Xuemei
    Zhao, Lingling
    PROCEEDINGS OF THE 2016 INTERNATIONAL CONFERENCE ON APPLIED MATHEMATICS, SIMULATION AND MODELLING, 2016, 41 : 345 - 347
12345