SACH: A Tool for Assisting Secure Android Application Development

被引:0
|
作者
Abernathy, Aakiel [1 ]
Yuan, Xiaohong [1 ]
Hill, Edward [1 ]
Xu, Jinsheng [1 ]
Bryant, Kelvin [1 ]
Williams, Kenneth [1 ]
机构
[1] North Carolina Agr & Tech State Univ, Dept Comp Sci, Greensboro, NC 27401 USA
来源
SOUTHEASTCON 2017 | 2017年
基金
美国国家科学基金会;
关键词
Android application development; secure coding; CERT [!text type='Java']Java[!/text] secure coding rules; INFORMATION LEAKAGE;
D O I
暂无
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
To mitigate the risk of attacks to mobile applications, it is important for mobile application developers to develop secure mobile applications. There have been tools that statically analyze the mobile applications to determine whether there are data leakage or access control vulnerabilities The Software Engineering Institute at Carnegie Melon University published CERT Java secure coding rules applicable to developing android applications. This paper describes SACH (Secure Android Coding Helper) - a tool we implemented to help developers identify security vulnerabilities in Android application. The tool analyzes Android application source code to detect violations of CERT Java secure coding rules. This tool will help Android developers to write Android code that comply with CERT Java secure coding rules. It can also be used in the classroom to teach students about Android secure coding.
引用
收藏
页数:4
相关论文
共 50 条
  • [41] Development of an Android Application to Combat Domestic Violence
    Angel Concepcion-Sanchez, Jose
    Caballero-Gil, Pino
    Molina-Gil, Jezabel
    UBIQUITOUS COMPUTING AND AMBIENT INTELLIGENCE, UCAMI 2016, PT II, 2016, 10070 : 524 - 529
  • [42] Development of Augmented Reality Application on Android OS
    Bilek, Ondrej
    Krejcar, Ondrej
    NEW HORIZONS IN DESIGN SCIENCE: BROADENING THE RESEARCH AGENDA, 2015, 9073 : 488 - 495
  • [43] A Web Base Android Application Development System
    Fang, Wen-Pinn
    Lu, Sheng-Hsuan
    Liu, Ming-Hao
    Lai, Ting-Hung
    Hung, Shan-Chun
    Huang, Yin-Feng
    Chen, Chii-Jen
    2014 INTERNATIONAL SYMPOSIUM ON COMPUTER, CONSUMER AND CONTROL (IS3C 2014), 2014, : 1156 - 1158
  • [44] Research and development of mobile application for android platform
    Ma, Li
    Gu, Lei
    Wang, Jin
    International Journal of Multimedia and Ubiquitous Engineering, 2014, 9 (04): : 187 - 198
  • [45] Development Money Diary Application Models on Android
    Debi
    Takeuchi, Michael
    Aliyudin, Muarif Gustiar
    Nurhayati, Pratiwi Wahyu
    Yossy, Emny Harna
    PROCEEDINGS OF 2020 INTERNATIONAL CONFERENCE ON INFORMATION MANAGEMENT AND TECHNOLOGY (ICIMTECH), 2020, : 142 - 147
  • [46] Continuous Integration for Android Application Development and Training
    Phan Duy Hung
    Do Thai Giang
    ICEMT 2019: 2019 3RD INTERNATIONAL CONFERENCE ON EDUCATION AND MULTIMEDIA TECHNOLOGY, 2019, : 145 - 149
  • [47] Application Development Research Based on Android Platform
    Shao Guo-hong
    2014 7TH INTERNATIONAL CONFERENCE ON INTELLIGENT COMPUTATION TECHNOLOGY AND AUTOMATION (ICICTA), 2014, : 579 - 582
  • [48] Fast Android Application Development with Component Modeling
    Koevesdan, Gabor
    Asztalos, Mark
    Lengyel, Laszlo
    2014 5th IEEE Conference on Cognitive Infocommunications (CogInfoCom), 2014, : 515 - 520
  • [49] Secure Paradigm For Web Application Development
    Subedi, B.
    Alsadoon, Abeer
    Prasad, P. W. C.
    Elchouemi, A.
    2016 15TH ROEDUNET CONFERENCE - NETWORKING IN EDUCATION AND RESEARCH, 2016,
  • [50] SAAC: Secure Android Application Context A Runtime Based Policy and its Architecture
    Averlant, Guillaume
    Alata, Eric
    Kaaniche, Mohamed
    Nicomette, Vincent
    Mao, Yuxiao
    2018 IEEE 17TH INTERNATIONAL SYMPOSIUM ON NETWORK COMPUTING AND APPLICATIONS (NCA), 2018,
12345