SlideShare a Scribd company logo

A Preliminary Conceptualization and Analysis on Automated Static Analysis Tools for Vulnerability Detection in Android Apps

SEAA 2022
SEAA 2022

Giammaria Giordano, Fabio Palomba, Filomena Ferrucci University of Salerno (Italy)
 Software Engineering (SeSa) Lab
 Department of Computer Science


Science
1 of 62
Download to read offline
A Preliminary Conceptualization and Analysis on Automated Static Analysis Tools for Vulnerability Detection in Android Apps Giammaria Giordano, Fabio Palomba, Filomena Ferrucci University of Salerno (Italy)
 Software Engineering (SeSa) Lab
 Department of Computer Science
 giagiordano@unisa.it GiammariaGiord1 https://broke31.github.io/giammaria-giordano/
2020 2021 2022 2023 2024 2025 18,22 17,72 16,8 15,96 14,91 14,2 Didascalia https://www.statista.com/statistics/245501/multiple-mobile-device-ownership-worldwide/ Number of Mobile Devices Worldwide from 2020 to 2025 (in billions)
2020 2021 2022 2023 2024 2025 18,22 17,72 16,8 15,96 14,91 14,2 Didascalia https://www.statista.com/statistics/245501/multiple-mobile-device-ownership-worldwide/ Number of Mobile Devices Worldwide from 2020 to 2025 (in billions) 80% of mobile devices are Android devices
Number of Mobile Devices Worldwide from 2020 to 2025 (in billions) https://www.statista.com/statistics/245501/multiple-mobile-device-ownership-worldwide/ 2020 2021 2022 2023 2024 2025 18,22 17,72 16,8 15,96 14,91 14,2 80% of mobile devices are Android devices Current World Population 8 billions
Although the vastness of proposed tools, we noticed a lack of empirical evaluation on the real capability of these static analysis tools to detect vulnerabilities
RQ2 - What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? RQ1 - What are the vulnerability types identi fi ed by existing automated static analysis tools for mobile apps? Research Questions
How did we address the RQs? For the fi rst RQ, we manually extracted a taxonomy of risks
How did we address the RQs? For the fi rst RQ, we manually extracted a taxonomy of risks For the second RQ, we analyzed the tools from a qualitative point of view by analyzing the frequencies of risk detection and the complementarity among them
Search Strategy
+6,500 Apps Search Strategy
+6,500 Apps AndroBugs Trueseeing Insider Search Strategy
+6,500 Apps Search Strategy AndroBugs Trueseeing Insider
+6,500 Apps Research Question 1 Research Question 2 Search Strategy AndroBugs Trueseeing Insider
RQ2 - What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Research Questions RQ1 - What are the vulnerability types identi fi ed by existing automated static analysis tools for mobile apps?
Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command
Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command AUTHENTICATION ACCESS Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication
Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command Insecure Manifest Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups
Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command External Resources WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL
Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command Improper Access Control Remove Android Device Lock by Rouge app KeyStore
Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command Results indicate that these tools can be used to support developers with the identi fi cation of 11 high- level vulnerability categories and 41 low-level ones
Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command Results indicate that these tools can be used to support developers with the identi fi cation of 11 high- level vulnerability categories and 41 low-level ones Most of the vulnerabilities found refer to Insecure Communication, Insecure Manifest, External Resources and Privacy
Category Tools Improper Platform Usage Androbugs Trueeseeing Insecure Data Storage Androbugs Trueeseeing Insecure Communication Androbugs Insider
 Trueeseeing Insu ffi cient Authentication Androbugs Trueeseeing Insu ffi cient Cryptography Trueseeing Insecure Authorization Client Code Quality Code tampering Trueeseeing Reverse Engineering Extraneous Functionality Key fi ndings of RQ1 - Vulnerabilities Identi fi ed by Tools
Category Tools Improper Platform Usage Androbugs Trueeseeing Insecure Data Storage Androbugs Trueeseeing Insecure Communication Androbugs Insider
 Trueeseeing Insu ffi cient Authentication Androbugs Trueeseeing Insu ffi cient Cryptography Trueseeing Insecure Authorization Client Code Quality Code tampering Trueeseeing Reverse Engineering Extraneous Functionality OWASP Mobile Top-10
 2016 Key fi ndings of RQ1 - Vulnerabilities Identi fi ed by Tools
Key fi ndings of RQ1 - Vulnerabilities Identi fi ed by Tools Category Tools Improper Platform Usage Androbugs Trueeseeing Insecure Data Storage Androbugs Trueeseeing Insecure Communication Androbugs Insider
 Trueeseeing Insu ffi cient Authentication Androbugs Trueeseeing Insu ffi cient Cryptography Trueseeing Insecure Authorization Client Code Quality Code tampering Trueeseeing Reverse Engineering Extraneous Functionality OWASP Mobile Top-10
 2016 We found that these tools only partially cover the top-10 risks by OWASP
RQ1 - What are the vulnerability types identi fi ed by existing automated static analysis tools for mobile apps? Research Questions RQ2 - What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
Androbugs Trueeseeing Insider Number of failures 0 425 850 1275 1700 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
Androbugs Trueeseeing Insider Number of failures 0 425 850 1275 1700 Androbugs and Insider fails in 20% of the cases, while, Trueseeing in 25% of the cases RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
Androbugs Trueeseeing Insider Number of failures 0 425 850 1275 1700 Androbugs and Insider fails in 20% of the cases, while, Trueseeing in 25% of the cases We found that these tools typically fail due to miscon fi guration and wrong dependencies usage RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
WebView SSL Security Sensitive Information External Storage StrandHogg Implicit Intent Command KeyStore Hacker Remove Android Device Lock Frequency of Detection 0 4.000 8.000 12.000 16.000 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Androbugs
Developers require an external webpage and a malicious user could inject using JavaScript malicious components inside the webpage WebView RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
Androbugs WebView SSL Security Sensitive Information External Storage StrandHogg Implicit Intent Command KeyStore Hacker Remove Android Device Lock Frequency of Detection 0 4.000 8.000 12.000 16.000 In almost 50% of the cases, the tools identi fi ed ‘Web View’ and ‘SSL Security’ vulnerabilities: these pertain to the ‘External Resources’ and ‘Insecure Communication’ categories of the taxonomy RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
Detect Logging Detect URL Detect Possible FQDN Detect Library Detect Format String Cyptographic Constants Detect Path Component Open Permission Detect Possible IPV4 Address Manipulable Broadcast Reveiver Frequency of Detection 0 150.000 300.000 450.000 600.000 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Trueeseeing
RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? if (verifyUsername(username) && verifyPassword(password)) { loginOK(); logger.log(Level.INFO, "Username: " + username); logger.log(Level.INFO, "Password: " + password); } Detect Logging fi le Developers could accidentally write sensitive information in a log file, and an attacker could identify these information to try an attack
Trueeseeing Detect Logging Detect URL Detect Possible FQDN Detect Library Detect Format String Cyptographic Constants Detect Path Component Open Permission Detect Possible IPV4 Address Manipulable Broadcast Reveiver Frequency of Detection 0 150.000 300.000 450.000 600.000 Almost 39% of the vulnerabilities found by the tools are connected to the use of logging fi les, which fall under the ‘Insecure Data’ category RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
Exposed to sensitive information Clear text of sensitive information Frequency of Detection 0 1.000 2.000 3.000 4.000 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Insider
RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? This vulnerability occurs when the developer does not use protection mechanisms appropriately when sharing or saving sensitive information Exposed to sensitive information
Insider Exposed to sensitive information Clear text of sensitive information Frequency of Detection 0 1.000 2.000 3.000 4.000 Almost 60% of the vulnerabilities found by the tools are connected to the use of ‘Expose to sensitive information’, which fall under the ’Privacy’ category RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
Insider Exposed to sensitive information Clear text of sensitive information Frequency of Detection 0 1.000 2.000 3.000 4.000 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Almost 60% of the vulnerabilities found by the tools are connected to the use of ‘Expose to sensitive information’, which fall under the ’Privacy’ category Although according to the of fi cial documentation, the tool can detect each vulnerability on the OWASP top 10. We observed a partial mismatch between the documentation and the real vulnerability detected
Insecure 
 Communication Insecure Data Privacy Improper Access Control External Storage Permission Code Obfuscator Insufficient Cryptography Improper Platform Use Code Tampering AndroBugs Trueseeing Insider RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
Key fi ndings of RQ2 - Frequency
Di ff erent tools can detect di ff erent security-related concerns with di ff erent frequencies Key fi ndings of RQ2 - Frequency
Key fi ndings of RQ2 - Frequency Di ff erent tools can detect di ff erent security-related concerns with di ff erent frequencies There are vulnerabilities almost never detected by these tools (e.g., Improper Access Control)
Key fi ndings of RQ2 - Frequency Di ff erent tools can detect di ff erent security-related concerns with di ff erent frequencies There are vulnerabilities almost never detected by these tools (e.g., Improper Access Control) A deeper analysis of the actual support provided by these tools could be necessary
Key fi ndings of RQ2 - Complementarity
AndroBugs and Trueseeing can cover di ff erent security-related problems, suggesting a sort of complementarity between them
 Key fi ndings of RQ2 - Complementarity
Key fi ndings of RQ2 - Complementarity AndroBugs and Trueseeing can cover di ff erent security-related problems, suggesting a sort of complementarity between them
 Insider can detect only a subset of vulnerabilities also detected by Androbug and Trueseeing
Replication package Scan me!
The results obtained indicate that:
 
 
 
 
 
 
 
 
 Replication package Scan me! Summing up
Replication package Scan me! Summing up The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 
 
 
 
 

Replication package Scan me! Summing up The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 
 

Replication package Scan me! Summing up The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible
Replication package Scan me! Summing up Future Works The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible
Replication package Scan me! Summing up Future Works The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible Manual evaluation of the accuracy of selected static analysis tools
Replication package Scan me! Summing up Future Works The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible Manual evaluation of the accuracy of selected static analysis tools Expand the study by including other tools (e.g., machine learning tools)
Replication package Scan me! Summing up Future Works Manual evaluation of the accuracy of selected static analysis tools Expand the study by including other tools (e.g., machine learning tools) Expand the dataset to include paid applications The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible
giagiordano@unisa.it GiammariaGiord1 https://broke31.github.io/ giammaria-giordano/ Scan me!
Backup slides
Selected tools We selected tools based on four criteria: Open-source and available on GitHub Take an apk file as input Perform a static analysis of the source code Can be run using the command line A large number of stars on GitHub
Detection of tools AndroBugs: 52 categories includes: Permission Issues, Exposure of Sensitive Information, and Insecure Communications Trueeseeing: 7 types of security issues: Improper Platform Usage, Insecure Data, Insecure Communications, Insufficient Cryptography, Client Code Quality Issues, Code Tampering, and Reverse Engineering Insider: The tool cover the OWASP Top 10 vulnerabilities and support multiple programming language like Java, Kotlin, Swift, .NET and others
Apk Selection Only apps available on Google Play Store Only apps with a minimum of 1000 installations Only apps with application size more than 1MB
Risk vs vulnerability Vulnerability refers to a weakness in your hardware, software. It’s a gap through which a bad actor can gain access to your assets. In other words, threats exploit vulnerabilities.  Risk is a potential threat that can in some cases be exploited and become a vulnerability

Recommended

Android Malware Detection
Android Malware DetectionAndroid Malware Detection
Android Malware DetectionIRJET Journal
 
IoT Slam Healthcare 12-02-2016
IoT Slam Healthcare 12-02-2016 IoT Slam Healthcare 12-02-2016
IoT Slam Healthcare 12-02-2016 Great Bay Software
 
Keeping up with the Revolution in IT Security
Keeping up with the Revolution in IT SecurityKeeping up with the Revolution in IT Security
Keeping up with the Revolution in IT SecurityDistil Networks
 
Android Malware Detection Literature Review
Android Malware Detection Literature ReviewAndroid Malware Detection Literature Review
Android Malware Detection Literature ReviewAhmed Sabbah
 
Detecting Misuses of Security APIs: A Systematic Review
Detecting Misuses of Security APIs: A Systematic ReviewDetecting Misuses of Security APIs: A Systematic Review
Detecting Misuses of Security APIs: A Systematic ReviewCREST @ University of Adelaide
 
Android Malware: Study and analysis of malware for privacy leak in ad-hoc net...
Android Malware: Study and analysis of malware for privacy leak in ad-hoc net...Android Malware: Study and analysis of malware for privacy leak in ad-hoc net...
Android Malware: Study and analysis of malware for privacy leak in ad-hoc net...IOSR Journals
 
A Systematic Review of Android Malware Detection Techniques
A Systematic Review of Android Malware Detection TechniquesA Systematic Review of Android Malware Detection Techniques
A Systematic Review of Android Malware Detection TechniquesCSCJournals
 
The Incident Response Playbook for Android and iOS
The Incident Response Playbook for Android and iOSThe Incident Response Playbook for Android and iOS
The Incident Response Playbook for Android and iOSPriyanka Aash
 

Recommended

Android Malware Detection
Android Malware DetectionAndroid Malware Detection
Android Malware DetectionIRJET Journal
 
IoT Slam Healthcare 12-02-2016
IoT Slam Healthcare 12-02-2016 IoT Slam Healthcare 12-02-2016
IoT Slam Healthcare 12-02-2016 Great Bay Software
 
Keeping up with the Revolution in IT Security
Keeping up with the Revolution in IT SecurityKeeping up with the Revolution in IT Security
Keeping up with the Revolution in IT SecurityDistil Networks
 
Android Malware Detection Literature Review
Android Malware Detection Literature ReviewAndroid Malware Detection Literature Review
Android Malware Detection Literature ReviewAhmed Sabbah
 
Detecting Misuses of Security APIs: A Systematic Review
Detecting Misuses of Security APIs: A Systematic ReviewDetecting Misuses of Security APIs: A Systematic Review
Detecting Misuses of Security APIs: A Systematic ReviewCREST @ University of Adelaide
 
Android Malware: Study and analysis of malware for privacy leak in ad-hoc net...
Android Malware: Study and analysis of malware for privacy leak in ad-hoc net...Android Malware: Study and analysis of malware for privacy leak in ad-hoc net...
Android Malware: Study and analysis of malware for privacy leak in ad-hoc net...IOSR Journals
 
A Systematic Review of Android Malware Detection Techniques
A Systematic Review of Android Malware Detection TechniquesA Systematic Review of Android Malware Detection Techniques
A Systematic Review of Android Malware Detection TechniquesCSCJournals
 
The Incident Response Playbook for Android and iOS
The Incident Response Playbook for Android and iOSThe Incident Response Playbook for Android and iOS
The Incident Response Playbook for Android and iOSPriyanka Aash
 
Fraud and Malware Detection in Google Play by using Search Rank
Fraud and Malware Detection in Google Play by using Search RankFraud and Malware Detection in Google Play by using Search Rank
Fraud and Malware Detection in Google Play by using Search Rankijtsrd
 
Unicom Conference - Mobile Application Security
Unicom Conference - Mobile Application SecurityUnicom Conference - Mobile Application Security
Unicom Conference - Mobile Application SecuritySubho Halder
 
IRJET - Android based Mobile Forensic and Comparison using Various Tools
IRJET - Android based Mobile Forensic and Comparison using Various ToolsIRJET - Android based Mobile Forensic and Comparison using Various Tools
IRJET - Android based Mobile Forensic and Comparison using Various ToolsIRJET Journal
 
Standards and methodology for application security assessment
Standards and methodology for application security assessment Standards and methodology for application security assessment
Standards and methodology for application security assessment Mykhailo Antonishyn
 
Malware Detection Approaches using Data Mining Techniques.pptx
Malware Detection Approaches using Data Mining Techniques.pptxMalware Detection Approaches using Data Mining Techniques.pptx
Malware Detection Approaches using Data Mining Techniques.pptxAlamgir Hossain
 
18-mobile-malware.pptx
18-mobile-malware.pptx18-mobile-malware.pptx
18-mobile-malware.pptxsundar110567
 
Open Source Insight: Happy Birthday Open Source and Application Security for ...
Open Source Insight: Happy Birthday Open Source and Application Security for ...Open Source Insight: Happy Birthday Open Source and Application Security for ...
Open Source Insight: Happy Birthday Open Source and Application Security for ...Black Duck by Synopsys
 
Ceis 9 padeep kumar_final_paper
Ceis 9 padeep kumar_final_paperCeis 9 padeep kumar_final_paper
Ceis 9 padeep kumar_final_paperAlexander Decker
 
What I Learned at RSAC 2020
What I Learned at RSAC 2020What I Learned at RSAC 2020
What I Learned at RSAC 2020Ulf Mattsson
 
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone Underwear
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone UnderwearThe Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone Underwear
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone UnderwearBob Wall
 
Security in the Hybrid Cloud Now and in 2016
Security in the Hybrid Cloud Now and in 2016 Security in the Hybrid Cloud Now and in 2016
Security in the Hybrid Cloud Now and in 2016 IDG Connect
 
Mobile Defense-in-Dev (Depth)
Mobile Defense-in-Dev (Depth)Mobile Defense-in-Dev (Depth)
Mobile Defense-in-Dev (Depth)Prathan Phongthiproek
 
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsManaging ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsPECB
 
Mobile Banking Security: Challenges, Solutions
Mobile Banking Security: Challenges, SolutionsMobile Banking Security: Challenges, Solutions
Mobile Banking Security: Challenges, SolutionsCognizant
 
Challenges in Testing Mobile App Security
Challenges in Testing Mobile App SecurityChallenges in Testing Mobile App Security
Challenges in Testing Mobile App SecurityCygnet Infotech
 
Malware analysis and detection using reverse Engineering, Available at: www....
Malware analysis and detection using reverse Engineering, Available at: www....Malware analysis and detection using reverse Engineering, Available at: www....
Malware analysis and detection using reverse Engineering, Available at: www....Research Publish Journals (Publisher)
 
H017445260
H017445260H017445260
H017445260IOSR Journals
 
Aujas incident management webinar deck 08162016
Aujas incident management webinar deck 08162016Aujas incident management webinar deck 08162016
Aujas incident management webinar deck 08162016Karl Kispert
 
Malicious Link Detection System
Malicious Link Detection SystemMalicious Link Detection System
Malicious Link Detection SystemIRJET Journal
 
Malware Bytes – Advanced Fault Analysis
Malware Bytes – Advanced Fault AnalysisMalware Bytes – Advanced Fault Analysis
Malware Bytes – Advanced Fault AnalysisIRJET Journal
 
Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...
Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...
Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...SEAA 2022
 
Bad Smells in Industrial Automation: Sniffing out Feature Envy
Bad Smells in Industrial Automation: Sniffing out Feature EnvyBad Smells in Industrial Automation: Sniffing out Feature Envy
Bad Smells in Industrial Automation: Sniffing out Feature EnvySEAA 2022
 

More Related Content

Similar to A Preliminary Conceptualization and Analysis on Automated Static Analysis Tools for Vulnerability Detection in Android Apps

Fraud and Malware Detection in Google Play by using Search Rank
Fraud and Malware Detection in Google Play by using Search RankFraud and Malware Detection in Google Play by using Search Rank
Fraud and Malware Detection in Google Play by using Search Rankijtsrd
 
Unicom Conference - Mobile Application Security
Unicom Conference - Mobile Application SecurityUnicom Conference - Mobile Application Security
Unicom Conference - Mobile Application SecuritySubho Halder
 
IRJET - Android based Mobile Forensic and Comparison using Various Tools
IRJET - Android based Mobile Forensic and Comparison using Various ToolsIRJET - Android based Mobile Forensic and Comparison using Various Tools
IRJET - Android based Mobile Forensic and Comparison using Various ToolsIRJET Journal
 
Standards and methodology for application security assessment
Standards and methodology for application security assessment Standards and methodology for application security assessment
Standards and methodology for application security assessment Mykhailo Antonishyn
 
Malware Detection Approaches using Data Mining Techniques.pptx
Malware Detection Approaches using Data Mining Techniques.pptxMalware Detection Approaches using Data Mining Techniques.pptx
Malware Detection Approaches using Data Mining Techniques.pptxAlamgir Hossain
 
18-mobile-malware.pptx
18-mobile-malware.pptx18-mobile-malware.pptx
18-mobile-malware.pptxsundar110567
 
Open Source Insight: Happy Birthday Open Source and Application Security for ...
Open Source Insight: Happy Birthday Open Source and Application Security for ...Open Source Insight: Happy Birthday Open Source and Application Security for ...
Open Source Insight: Happy Birthday Open Source and Application Security for ...Black Duck by Synopsys
 
Ceis 9 padeep kumar_final_paper
Ceis 9 padeep kumar_final_paperCeis 9 padeep kumar_final_paper
Ceis 9 padeep kumar_final_paperAlexander Decker
 
What I Learned at RSAC 2020
What I Learned at RSAC 2020What I Learned at RSAC 2020
What I Learned at RSAC 2020Ulf Mattsson
 
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone Underwear
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone UnderwearThe Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone Underwear
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone UnderwearBob Wall
 
Security in the Hybrid Cloud Now and in 2016
Security in the Hybrid Cloud Now and in 2016 Security in the Hybrid Cloud Now and in 2016
Security in the Hybrid Cloud Now and in 2016 IDG Connect
 
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsManaging ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsPECB
 
Mobile Banking Security: Challenges, Solutions
Mobile Banking Security: Challenges, SolutionsMobile Banking Security: Challenges, Solutions
Mobile Banking Security: Challenges, SolutionsCognizant
 
Challenges in Testing Mobile App Security
Challenges in Testing Mobile App SecurityChallenges in Testing Mobile App Security
Challenges in Testing Mobile App SecurityCygnet Infotech
 
Malware analysis and detection using reverse Engineering, Available at: www....
Malware analysis and detection using reverse Engineering, Available at: www....Malware analysis and detection using reverse Engineering, Available at: www....
Malware analysis and detection using reverse Engineering, Available at: www....Research Publish Journals (Publisher)
 
Aujas incident management webinar deck 08162016
Aujas incident management webinar deck 08162016Aujas incident management webinar deck 08162016
Aujas incident management webinar deck 08162016Karl Kispert
 
Malicious Link Detection System
Malicious Link Detection SystemMalicious Link Detection System
Malicious Link Detection SystemIRJET Journal
 
Malware Bytes – Advanced Fault Analysis
Malware Bytes – Advanced Fault AnalysisMalware Bytes – Advanced Fault Analysis
Malware Bytes – Advanced Fault AnalysisIRJET Journal
 

Similar to A Preliminary Conceptualization and Analysis on Automated Static Analysis Tools for Vulnerability Detection in Android Apps (20)

Fraud and Malware Detection in Google Play by using Search Rank
Fraud and Malware Detection in Google Play by using Search RankFraud and Malware Detection in Google Play by using Search Rank
Fraud and Malware Detection in Google Play by using Search Rank
 
Unicom Conference - Mobile Application Security
Unicom Conference - Mobile Application SecurityUnicom Conference - Mobile Application Security
Unicom Conference - Mobile Application Security
 
IRJET - Android based Mobile Forensic and Comparison using Various Tools
IRJET - Android based Mobile Forensic and Comparison using Various ToolsIRJET - Android based Mobile Forensic and Comparison using Various Tools
IRJET - Android based Mobile Forensic and Comparison using Various Tools
 
Standards and methodology for application security assessment
Standards and methodology for application security assessment Standards and methodology for application security assessment
Standards and methodology for application security assessment
 
Malware Detection Approaches using Data Mining Techniques.pptx
Malware Detection Approaches using Data Mining Techniques.pptxMalware Detection Approaches using Data Mining Techniques.pptx
Malware Detection Approaches using Data Mining Techniques.pptx
 
18-mobile-malware.pptx
18-mobile-malware.pptx18-mobile-malware.pptx
18-mobile-malware.pptx
 
Open Source Insight: Happy Birthday Open Source and Application Security for ...
Open Source Insight: Happy Birthday Open Source and Application Security for ...Open Source Insight: Happy Birthday Open Source and Application Security for ...
Open Source Insight: Happy Birthday Open Source and Application Security for ...
 
Ceis 9 padeep kumar_final_paper
Ceis 9 padeep kumar_final_paperCeis 9 padeep kumar_final_paper
Ceis 9 padeep kumar_final_paper
 
What I Learned at RSAC 2020
What I Learned at RSAC 2020What I Learned at RSAC 2020
What I Learned at RSAC 2020
 
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone Underwear
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone UnderwearThe Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone Underwear
The Internet Is a Dog-Eat-Dog World, and Your App Is Clad in Milk-Bone Underwear
 
Security in the Hybrid Cloud Now and in 2016
Security in the Hybrid Cloud Now and in 2016 Security in the Hybrid Cloud Now and in 2016
Security in the Hybrid Cloud Now and in 2016
 
Mobile Defense-in-Dev (Depth)
Mobile Defense-in-Dev (Depth)Mobile Defense-in-Dev (Depth)
Mobile Defense-in-Dev (Depth)
 
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsManaging ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
 
Mobile Banking Security: Challenges, Solutions
Mobile Banking Security: Challenges, SolutionsMobile Banking Security: Challenges, Solutions
Mobile Banking Security: Challenges, Solutions
 
Challenges in Testing Mobile App Security
Challenges in Testing Mobile App SecurityChallenges in Testing Mobile App Security
Challenges in Testing Mobile App Security
 
Malware analysis and detection using reverse Engineering, Available at: www....
Malware analysis and detection using reverse Engineering, Available at: www....Malware analysis and detection using reverse Engineering, Available at: www....
Malware analysis and detection using reverse Engineering, Available at: www....
 
H017445260
H017445260H017445260
H017445260
 
Aujas incident management webinar deck 08162016
Aujas incident management webinar deck 08162016Aujas incident management webinar deck 08162016
Aujas incident management webinar deck 08162016
 
Malicious Link Detection System
Malicious Link Detection SystemMalicious Link Detection System
Malicious Link Detection System
 
Malware Bytes – Advanced Fault Analysis
Malware Bytes – Advanced Fault AnalysisMalware Bytes – Advanced Fault Analysis
Malware Bytes – Advanced Fault Analysis
 

More from SEAA 2022

Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...
Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...
Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...SEAA 2022
 
Bad Smells in Industrial Automation: Sniffing out Feature Envy
Bad Smells in Industrial Automation: Sniffing out Feature EnvyBad Smells in Industrial Automation: Sniffing out Feature Envy
Bad Smells in Industrial Automation: Sniffing out Feature EnvySEAA 2022
 
Software Architecture Challenges in Process Automation - From Code Generation...
Software Architecture Challenges in Process Automation - From Code Generation...Software Architecture Challenges in Process Automation - From Code Generation...
Software Architecture Challenges in Process Automation - From Code Generation...SEAA 2022
 
From Traditional to Digital: How software, data and AI are transforming the e...
From Traditional to Digital: How software, data and AI are transforming the e...From Traditional to Digital: How software, data and AI are transforming the e...
From Traditional to Digital: How software, data and AI are transforming the e...SEAA 2022
 
Exploiting dynamic analysis for architectural smell detection: a preliminary ...
Exploiting dynamic analysis for architectural smell detection: a preliminary ...Exploiting dynamic analysis for architectural smell detection: a preliminary ...
Exploiting dynamic analysis for architectural smell detection: a preliminary ...SEAA 2022
 
On the Role of Personality Traits in Implementation Tasks: A Preliminary Inve...
On the Role of Personality Traits in Implementation Tasks: A Preliminary Inve...On the Role of Personality Traits in Implementation Tasks: A Preliminary Inve...
On the Role of Personality Traits in Implementation Tasks: A Preliminary Inve...SEAA 2022
 
An Empirical Analysis of Microservices Systems Using Consumer-Driven Contract...
An Empirical Analysis of Microservices Systems Using Consumer-Driven Contract...An Empirical Analysis of Microservices Systems Using Consumer-Driven Contract...
An Empirical Analysis of Microservices Systems Using Consumer-Driven Contract...SEAA 2022
 
Have Java Production Methods Co-Evolved With Test Methods Properly?: A Fine-G...
Have Java Production Methods Co-Evolved With Test Methods Properly?: A Fine-G...Have Java Production Methods Co-Evolved With Test Methods Properly?: A Fine-G...
Have Java Production Methods Co-Evolved With Test Methods Properly?: A Fine-G...SEAA 2022
 
An Evaluation of Effort-Aware Fine-Grained Just-in-Time Defect Prediction Met...
An Evaluation of Effort-Aware Fine-Grained Just-in-Time Defect Prediction Met...An Evaluation of Effort-Aware Fine-Grained Just-in-Time Defect Prediction Met...
An Evaluation of Effort-Aware Fine-Grained Just-in-Time Defect Prediction Met...SEAA 2022
 
The Impact of Forced Working-From-Home on Code Technical Debt: An Industrial ...
The Impact of Forced Working-From-Home on Code Technical Debt: An Industrial ...The Impact of Forced Working-From-Home on Code Technical Debt: An Industrial ...
The Impact of Forced Working-From-Home on Code Technical Debt: An Industrial ...SEAA 2022
 
Service Classification through Machine Learning: Aiding in the Efficient Ide...
Service Classification through Machine Learning: Aiding in the Efficient Ide... Service Classification through Machine Learning: Aiding in the Efficient Ide...
Service Classification through Machine Learning: Aiding in the Efficient Ide...SEAA 2022
 
Maintainability Challenges inML:ASLR
Maintainability Challenges inML:ASLRMaintainability Challenges inML:ASLR
Maintainability Challenges inML:ASLRSEAA 2022
 
Model-Driven Optimization: Generating Smart Mutation Operators for Multi-Obj...
Model-Driven Optimization: Generating Smart Mutation Operators for Multi-Obj... Model-Driven Optimization: Generating Smart Mutation Operators for Multi-Obj...
Model-Driven Optimization: Generating Smart Mutation Operators for Multi-Obj...SEAA 2022
 
An Industrial Experience Report about Challenges from Continuous Monitoring, ...
An Industrial Experience Report about Challenges from Continuous Monitoring, ...An Industrial Experience Report about Challenges from Continuous Monitoring, ...
An Industrial Experience Report about Challenges from Continuous Monitoring, ...SEAA 2022
 
API Deprecation: A Systematic Mapping Study
API Deprecation: A Systematic Mapping StudyAPI Deprecation: A Systematic Mapping Study
API Deprecation: A Systematic Mapping StudySEAA 2022
 
MDEML_UMLsec4Edge Extending UMLsec to model data-protection-compliant edge co...
MDEML_UMLsec4Edge Extending UMLsec to model data-protection-compliant edge co...MDEML_UMLsec4Edge Extending UMLsec to model data-protection-compliant edge co...
MDEML_UMLsec4Edge Extending UMLsec to model data-protection-compliant edge co...SEAA 2022
 
EMMM: A Unified Meta-Model for Tracking Machine Learning Experiments
EMMM: A Unified Meta-Model for Tracking Machine Learning Experiments EMMM: A Unified Meta-Model for Tracking Machine Learning Experiments
EMMM: A Unified Meta-Model for Tracking Machine Learning ExperimentsSEAA 2022
 
Easing the Reuse of ML Solutions by Interactive Clustering-based Autotuning i...
Easing the Reuse of ML Solutions by Interactive Clustering-based Autotuning i...Easing the Reuse of ML Solutions by Interactive Clustering-based Autotuning i...
Easing the Reuse of ML Solutions by Interactive Clustering-based Autotuning i...SEAA 2022
 

More from SEAA 2022 (18)

Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...
Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...
Risk and Engineering Knowledge Integration in Cyber-physical Production Syste...
 
Bad Smells in Industrial Automation: Sniffing out Feature Envy
Bad Smells in Industrial Automation: Sniffing out Feature EnvyBad Smells in Industrial Automation: Sniffing out Feature Envy
Bad Smells in Industrial Automation: Sniffing out Feature Envy
 
Software Architecture Challenges in Process Automation - From Code Generation...
Software Architecture Challenges in Process Automation - From Code Generation...Software Architecture Challenges in Process Automation - From Code Generation...
Software Architecture Challenges in Process Automation - From Code Generation...
 
From Traditional to Digital: How software, data and AI are transforming the e...
From Traditional to Digital: How software, data and AI are transforming the e...From Traditional to Digital: How software, data and AI are transforming the e...
From Traditional to Digital: How software, data and AI are transforming the e...
 
Exploiting dynamic analysis for architectural smell detection: a preliminary ...
Exploiting dynamic analysis for architectural smell detection: a preliminary ...Exploiting dynamic analysis for architectural smell detection: a preliminary ...
Exploiting dynamic analysis for architectural smell detection: a preliminary ...
 
On the Role of Personality Traits in Implementation Tasks: A Preliminary Inve...
On the Role of Personality Traits in Implementation Tasks: A Preliminary Inve...On the Role of Personality Traits in Implementation Tasks: A Preliminary Inve...
On the Role of Personality Traits in Implementation Tasks: A Preliminary Inve...
 
An Empirical Analysis of Microservices Systems Using Consumer-Driven Contract...
An Empirical Analysis of Microservices Systems Using Consumer-Driven Contract...An Empirical Analysis of Microservices Systems Using Consumer-Driven Contract...
An Empirical Analysis of Microservices Systems Using Consumer-Driven Contract...
 
Have Java Production Methods Co-Evolved With Test Methods Properly?: A Fine-G...
Have Java Production Methods Co-Evolved With Test Methods Properly?: A Fine-G...Have Java Production Methods Co-Evolved With Test Methods Properly?: A Fine-G...
Have Java Production Methods Co-Evolved With Test Methods Properly?: A Fine-G...
 
An Evaluation of Effort-Aware Fine-Grained Just-in-Time Defect Prediction Met...
An Evaluation of Effort-Aware Fine-Grained Just-in-Time Defect Prediction Met...An Evaluation of Effort-Aware Fine-Grained Just-in-Time Defect Prediction Met...
An Evaluation of Effort-Aware Fine-Grained Just-in-Time Defect Prediction Met...
 
The Impact of Forced Working-From-Home on Code Technical Debt: An Industrial ...
The Impact of Forced Working-From-Home on Code Technical Debt: An Industrial ...The Impact of Forced Working-From-Home on Code Technical Debt: An Industrial ...
The Impact of Forced Working-From-Home on Code Technical Debt: An Industrial ...
 
Service Classification through Machine Learning: Aiding in the Efficient Ide...
Service Classification through Machine Learning: Aiding in the Efficient Ide... Service Classification through Machine Learning: Aiding in the Efficient Ide...
Service Classification through Machine Learning: Aiding in the Efficient Ide...
 
Maintainability Challenges inML:ASLR
Maintainability Challenges inML:ASLRMaintainability Challenges inML:ASLR
Maintainability Challenges inML:ASLR
 
Model-Driven Optimization: Generating Smart Mutation Operators for Multi-Obj...
Model-Driven Optimization: Generating Smart Mutation Operators for Multi-Obj... Model-Driven Optimization: Generating Smart Mutation Operators for Multi-Obj...
Model-Driven Optimization: Generating Smart Mutation Operators for Multi-Obj...
 
An Industrial Experience Report about Challenges from Continuous Monitoring, ...
An Industrial Experience Report about Challenges from Continuous Monitoring, ...An Industrial Experience Report about Challenges from Continuous Monitoring, ...
An Industrial Experience Report about Challenges from Continuous Monitoring, ...
 
API Deprecation: A Systematic Mapping Study
API Deprecation: A Systematic Mapping StudyAPI Deprecation: A Systematic Mapping Study
API Deprecation: A Systematic Mapping Study
 
MDEML_UMLsec4Edge Extending UMLsec to model data-protection-compliant edge co...
MDEML_UMLsec4Edge Extending UMLsec to model data-protection-compliant edge co...MDEML_UMLsec4Edge Extending UMLsec to model data-protection-compliant edge co...
MDEML_UMLsec4Edge Extending UMLsec to model data-protection-compliant edge co...
 
EMMM: A Unified Meta-Model for Tracking Machine Learning Experiments
EMMM: A Unified Meta-Model for Tracking Machine Learning Experiments EMMM: A Unified Meta-Model for Tracking Machine Learning Experiments
EMMM: A Unified Meta-Model for Tracking Machine Learning Experiments
 
Easing the Reuse of ML Solutions by Interactive Clustering-based Autotuning i...
Easing the Reuse of ML Solutions by Interactive Clustering-based Autotuning i...Easing the Reuse of ML Solutions by Interactive Clustering-based Autotuning i...
Easing the Reuse of ML Solutions by Interactive Clustering-based Autotuning i...
 

Recently uploaded

A relative description on Sonoporation.pdf
A relative description on Sonoporation.pdfA relative description on Sonoporation.pdf
A relative description on Sonoporation.pdfnehabiju2046
 
Is RISC-V ready for HPC workload? Maybe?
Is RISC-V ready for HPC workload? Maybe?Is RISC-V ready for HPC workload? Maybe?
Is RISC-V ready for HPC workload? Maybe?Patrick Diehl
 
Work, Energy and Power for class 10 ICSE Physics
Work, Energy and Power for class 10 ICSE PhysicsWork, Energy and Power for class 10 ICSE Physics
Work, Energy and Power for class 10 ICSE Physicsvishikhakeshava1
 
The Black hole shadow in Modified Gravity
The Black hole shadow in Modified GravityThe Black hole shadow in Modified Gravity
The Black hole shadow in Modified GravitySubhadipsau21168
 
Natural Polymer Based Nanomaterials
Natural Polymer Based NanomaterialsNatural Polymer Based Nanomaterials
Natural Polymer Based NanomaterialsAArockiyaNisha
 
Analytical Profile of Coleus Forskohlii | Forskolin .pdf
Analytical Profile of Coleus Forskohlii | Forskolin .pdfAnalytical Profile of Coleus Forskohlii | Forskolin .pdf
Analytical Profile of Coleus Forskohlii | Forskolin .pdfSwapnil Therkar
 
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |aasikanpl
 
Neurodevelopmental disorders according to the dsm 5 tr
Neurodevelopmental disorders according to the dsm 5 trNeurodevelopmental disorders according to the dsm 5 tr
Neurodevelopmental disorders according to the dsm 5 trssuser06f238
 
Recombinant DNA technology( Transgenic plant and animal)
Recombinant DNA technology( Transgenic plant and animal)Recombinant DNA technology( Transgenic plant and animal)
Recombinant DNA technology( Transgenic plant and animal)DHURKADEVIBASKAR
 
All-domain Anomaly Resolution Office U.S. Department of Defense (U) Case: “Eg...
All-domain Anomaly Resolution Office U.S. Department of Defense (U) Case: “Eg...All-domain Anomaly Resolution Office U.S. Department of Defense (U) Case: “Eg...
All-domain Anomaly Resolution Office U.S. Department of Defense (U) Case: “Eg...Sérgio Sacani
 
Traditional Agroforestry System in India- Shifting Cultivation, Taungya, Home...
Traditional Agroforestry System in India- Shifting Cultivation, Taungya, Home...Traditional Agroforestry System in India- Shifting Cultivation, Taungya, Home...
Traditional Agroforestry System in India- Shifting Cultivation, Taungya, Home...jana861314
 
Nanoparticles synthesis and characterization​ ​
Nanoparticles synthesis and characterization​ ​Nanoparticles synthesis and characterization​ ​
Nanoparticles synthesis and characterization​ ​kaibalyasahoo82800
 
Bentham & Hooker's Classification. along with the merits and demerits of the ...
Bentham & Hooker's Classification. along with the merits and demerits of the ...Bentham & Hooker's Classification. along with the merits and demerits of the ...
Bentham & Hooker's Classification. along with the merits and demerits of the ...Nistarini College, Purulia (W.B) India
 
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...Sérgio Sacani
 
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCESTERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCEPRINCE C P
 
Call Girls in Munirka Delhi 💯Call Us 🔝9953322196🔝 💯Escort.
Call Girls in Munirka Delhi 💯Call Us 🔝9953322196🔝 💯Escort.Call Girls in Munirka Delhi 💯Call Us 🔝9953322196🔝 💯Escort.
Call Girls in Munirka Delhi 💯Call Us 🔝9953322196🔝 💯Escort.aasikanpl
 
Analytical Profile of Coleus Forskohlii | Forskolin .pptx
Analytical Profile of Coleus Forskohlii | Forskolin .pptxAnalytical Profile of Coleus Forskohlii | Forskolin .pptx
Analytical Profile of Coleus Forskohlii | Forskolin .pptxSwapnil Therkar
 
Grafana in space: Monitoring Japan's SLIM moon lander in real time
Grafana in space: Monitoring Japan's SLIM moon lander in real timeGrafana in space: Monitoring Japan's SLIM moon lander in real time
Grafana in space: Monitoring Japan's SLIM moon lander in real timeSatoshi NAKAHIRA
 
Dashanga agada a formulation of Agada tantra dealt in 3 Rd year bams agada tanta
Dashanga agada a formulation of Agada tantra dealt in 3 Rd year bams agada tantaDashanga agada a formulation of Agada tantra dealt in 3 Rd year bams agada tanta
Dashanga agada a formulation of Agada tantra dealt in 3 Rd year bams agada tantaPraksha3
 

Recently uploaded (20)

A relative description on Sonoporation.pdf
A relative description on Sonoporation.pdfA relative description on Sonoporation.pdf
A relative description on Sonoporation.pdf
 
Is RISC-V ready for HPC workload? Maybe?
Is RISC-V ready for HPC workload? Maybe?Is RISC-V ready for HPC workload? Maybe?
Is RISC-V ready for HPC workload? Maybe?
 
Work, Energy and Power for class 10 ICSE Physics
Work, Energy and Power for class 10 ICSE PhysicsWork, Energy and Power for class 10 ICSE Physics
Work, Energy and Power for class 10 ICSE Physics
 
9953056974 Young Call Girls In Mahavir enclave Indian Quality Escort service
9953056974 Young Call Girls In Mahavir enclave Indian Quality Escort service9953056974 Young Call Girls In Mahavir enclave Indian Quality Escort service
9953056974 Young Call Girls In Mahavir enclave Indian Quality Escort service
 
The Black hole shadow in Modified Gravity
The Black hole shadow in Modified GravityThe Black hole shadow in Modified Gravity
The Black hole shadow in Modified Gravity
 
Natural Polymer Based Nanomaterials
Natural Polymer Based NanomaterialsNatural Polymer Based Nanomaterials
Natural Polymer Based Nanomaterials
 
Analytical Profile of Coleus Forskohlii | Forskolin .pdf
Analytical Profile of Coleus Forskohlii | Forskolin .pdfAnalytical Profile of Coleus Forskohlii | Forskolin .pdf
Analytical Profile of Coleus Forskohlii | Forskolin .pdf
 
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
Call Us ≽ 9953322196 ≼ Call Girls In Mukherjee Nagar(Delhi) |
 
Neurodevelopmental disorders according to the dsm 5 tr
Neurodevelopmental disorders according to the dsm 5 trNeurodevelopmental disorders according to the dsm 5 tr
Neurodevelopmental disorders according to the dsm 5 tr
 
Recombinant DNA technology( Transgenic plant and animal)
Recombinant DNA technology( Transgenic plant and animal)Recombinant DNA technology( Transgenic plant and animal)
Recombinant DNA technology( Transgenic plant and animal)
 
All-domain Anomaly Resolution Office U.S. Department of Defense (U) Case: “Eg...
All-domain Anomaly Resolution Office U.S. Department of Defense (U) Case: “Eg...All-domain Anomaly Resolution Office U.S. Department of Defense (U) Case: “Eg...
All-domain Anomaly Resolution Office U.S. Department of Defense (U) Case: “Eg...
 
Traditional Agroforestry System in India- Shifting Cultivation, Taungya, Home...
Traditional Agroforestry System in India- Shifting Cultivation, Taungya, Home...Traditional Agroforestry System in India- Shifting Cultivation, Taungya, Home...
Traditional Agroforestry System in India- Shifting Cultivation, Taungya, Home...
 
Nanoparticles synthesis and characterization​ ​
Nanoparticles synthesis and characterization​ ​Nanoparticles synthesis and characterization​ ​
Nanoparticles synthesis and characterization​ ​
 
Bentham & Hooker's Classification. along with the merits and demerits of the ...
Bentham & Hooker's Classification. along with the merits and demerits of the ...Bentham & Hooker's Classification. along with the merits and demerits of the ...
Bentham & Hooker's Classification. along with the merits and demerits of the ...
 
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
Discovery of an Accretion Streamer and a Slow Wide-angle Outflow around FUOri...
 
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCESTERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
STERILITY TESTING OF PHARMACEUTICALS ppt by DR.C.P.PRINCE
 
Call Girls in Munirka Delhi 💯Call Us 🔝9953322196🔝 💯Escort.
Call Girls in Munirka Delhi 💯Call Us 🔝9953322196🔝 💯Escort.Call Girls in Munirka Delhi 💯Call Us 🔝9953322196🔝 💯Escort.
Call Girls in Munirka Delhi 💯Call Us 🔝9953322196🔝 💯Escort.
 
Analytical Profile of Coleus Forskohlii | Forskolin .pptx
Analytical Profile of Coleus Forskohlii | Forskolin .pptxAnalytical Profile of Coleus Forskohlii | Forskolin .pptx
Analytical Profile of Coleus Forskohlii | Forskolin .pptx
 
Grafana in space: Monitoring Japan's SLIM moon lander in real time
Grafana in space: Monitoring Japan's SLIM moon lander in real timeGrafana in space: Monitoring Japan's SLIM moon lander in real time
Grafana in space: Monitoring Japan's SLIM moon lander in real time
 
Dashanga agada a formulation of Agada tantra dealt in 3 Rd year bams agada tanta
Dashanga agada a formulation of Agada tantra dealt in 3 Rd year bams agada tantaDashanga agada a formulation of Agada tantra dealt in 3 Rd year bams agada tanta
Dashanga agada a formulation of Agada tantra dealt in 3 Rd year bams agada tanta
 

A Preliminary Conceptualization and Analysis on Automated Static Analysis Tools for Vulnerability Detection in Android Apps

  • 1. A Preliminary Conceptualization and Analysis on Automated Static Analysis Tools for Vulnerability Detection in Android Apps Giammaria Giordano, Fabio Palomba, Filomena Ferrucci University of Salerno (Italy)
 Software Engineering (SeSa) Lab
 Department of Computer Science
 giagiordano@unisa.it GiammariaGiord1 https://broke31.github.io/giammaria-giordano/
  • 2. 2020 2021 2022 2023 2024 2025 18,22 17,72 16,8 15,96 14,91 14,2 Didascalia https://www.statista.com/statistics/245501/multiple-mobile-device-ownership-worldwide/ Number of Mobile Devices Worldwide from 2020 to 2025 (in billions)
  • 3. 2020 2021 2022 2023 2024 2025 18,22 17,72 16,8 15,96 14,91 14,2 Didascalia https://www.statista.com/statistics/245501/multiple-mobile-device-ownership-worldwide/ Number of Mobile Devices Worldwide from 2020 to 2025 (in billions) 80% of mobile devices are Android devices
  • 4. Number of Mobile Devices Worldwide from 2020 to 2025 (in billions) https://www.statista.com/statistics/245501/multiple-mobile-device-ownership-worldwide/ 2020 2021 2022 2023 2024 2025 18,22 17,72 16,8 15,96 14,91 14,2 80% of mobile devices are Android devices Current World Population 8 billions
  • 5.
  • 6. Although the vastness of proposed tools, we noticed a lack of empirical evaluation on the real capability of these static analysis tools to detect vulnerabilities
  • 7. RQ2 - What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? RQ1 - What are the vulnerability types identi fi ed by existing automated static analysis tools for mobile apps? Research Questions
  • 8. How did we address the RQs? For the fi rst RQ, we manually extracted a taxonomy of risks
  • 9. How did we address the RQs? For the fi rst RQ, we manually extracted a taxonomy of risks For the second RQ, we analyzed the tools from a qualitative point of view by analyzing the frequencies of risk detection and the complementarity among them
  • 14. +6,500 Apps Research Question 1 Research Question 2 Search Strategy AndroBugs Trueseeing Insider
  • 15. RQ2 - What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Research Questions RQ1 - What are the vulnerability types identi fi ed by existing automated static analysis tools for mobile apps?
  • 16. Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command
  • 17. Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command AUTHENTICATION ACCESS Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication
  • 18. Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command Insecure Manifest Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups
  • 19. Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command External Resources WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL
  • 20. Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command Improper Access Control Remove Android Device Lock by Rouge app KeyStore
  • 21. Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command Results indicate that these tools can be used to support developers with the identi fi cation of 11 high- level vulnerability categories and 41 low-level ones
  • 22. Security-Related Concerns AUTHENT ICATION ACCESS Insecure Manifest External Resources Improper Access Control Code Tampering Code Obfuscation Insecure Data Insu ffi cient Cryptography Other Privacy Permission Privacy Concern Clear Text Storage of sensitive information Expose sensitive information to Unauthorized actors un Sensitive Information Base64 String Encryption Cryptography Constants Detection Cipher Might Be Operating In ECB Mode Detected O ff uscator Lack of Obfuscation Hardcode Certi fi cates Remove Android Device Lock by Rouge app KeyStore Insecure Mixed Content mode Detected Possible IPV4 Address SSL Security Server-Side Request Forgery Insecure TLS Lack of pinning Use of clear text HTTP Insecure Communication Manipulable Activity Manifest ContentProvider Exported Debuggable Manipulable Backups WebView Detected Format String Detected Library Detected possible FQDN Detected path component Detected URL Detected Logging External storage Accessing Database Manifest Dangerous Protection Level of Permission Manifest Critical Permission Unnecessary Permission App Sandbox Permission Insecure File Permission Open Permission Strandhogg Bypass permission Command Results indicate that these tools can be used to support developers with the identi fi cation of 11 high- level vulnerability categories and 41 low-level ones Most of the vulnerabilities found refer to Insecure Communication, Insecure Manifest, External Resources and Privacy
  • 23. Category Tools Improper Platform Usage Androbugs Trueeseeing Insecure Data Storage Androbugs Trueeseeing Insecure Communication Androbugs Insider
 Trueeseeing Insu ffi cient Authentication Androbugs Trueeseeing Insu ffi cient Cryptography Trueseeing Insecure Authorization Client Code Quality Code tampering Trueeseeing Reverse Engineering Extraneous Functionality Key fi ndings of RQ1 - Vulnerabilities Identi fi ed by Tools
  • 24. Category Tools Improper Platform Usage Androbugs Trueeseeing Insecure Data Storage Androbugs Trueeseeing Insecure Communication Androbugs Insider
 Trueeseeing Insu ffi cient Authentication Androbugs Trueeseeing Insu ffi cient Cryptography Trueseeing Insecure Authorization Client Code Quality Code tampering Trueeseeing Reverse Engineering Extraneous Functionality OWASP Mobile Top-10
 2016 Key fi ndings of RQ1 - Vulnerabilities Identi fi ed by Tools
  • 25. Key fi ndings of RQ1 - Vulnerabilities Identi fi ed by Tools Category Tools Improper Platform Usage Androbugs Trueeseeing Insecure Data Storage Androbugs Trueeseeing Insecure Communication Androbugs Insider
 Trueeseeing Insu ffi cient Authentication Androbugs Trueeseeing Insu ffi cient Cryptography Trueseeing Insecure Authorization Client Code Quality Code tampering Trueeseeing Reverse Engineering Extraneous Functionality OWASP Mobile Top-10
 2016 We found that these tools only partially cover the top-10 risks by OWASP
  • 26. RQ1 - What are the vulnerability types identi fi ed by existing automated static analysis tools for mobile apps? Research Questions RQ2 - What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
  • 27. Androbugs Trueeseeing Insider Number of failures 0 425 850 1275 1700 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
  • 28. Androbugs Trueeseeing Insider Number of failures 0 425 850 1275 1700 Androbugs and Insider fails in 20% of the cases, while, Trueseeing in 25% of the cases RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
  • 29. Androbugs Trueeseeing Insider Number of failures 0 425 850 1275 1700 Androbugs and Insider fails in 20% of the cases, while, Trueseeing in 25% of the cases We found that these tools typically fail due to miscon fi guration and wrong dependencies usage RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
  • 30. WebView SSL Security Sensitive Information External Storage StrandHogg Implicit Intent Command KeyStore Hacker Remove Android Device Lock Frequency of Detection 0 4.000 8.000 12.000 16.000 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Androbugs
  • 31. Developers require an external webpage and a malicious user could inject using JavaScript malicious components inside the webpage WebView RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
  • 32. Androbugs WebView SSL Security Sensitive Information External Storage StrandHogg Implicit Intent Command KeyStore Hacker Remove Android Device Lock Frequency of Detection 0 4.000 8.000 12.000 16.000 In almost 50% of the cases, the tools identi fi ed ‘Web View’ and ‘SSL Security’ vulnerabilities: these pertain to the ‘External Resources’ and ‘Insecure Communication’ categories of the taxonomy RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
  • 33. Detect Logging Detect URL Detect Possible FQDN Detect Library Detect Format String Cyptographic Constants Detect Path Component Open Permission Detect Possible IPV4 Address Manipulable Broadcast Reveiver Frequency of Detection 0 150.000 300.000 450.000 600.000 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Trueeseeing
  • 34. RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? if (verifyUsername(username) && verifyPassword(password)) { loginOK(); logger.log(Level.INFO, "Username: " + username); logger.log(Level.INFO, "Password: " + password); } Detect Logging fi le Developers could accidentally write sensitive information in a log file, and an attacker could identify these information to try an attack
  • 35. Trueeseeing Detect Logging Detect URL Detect Possible FQDN Detect Library Detect Format String Cyptographic Constants Detect Path Component Open Permission Detect Possible IPV4 Address Manipulable Broadcast Reveiver Frequency of Detection 0 150.000 300.000 450.000 600.000 Almost 39% of the vulnerabilities found by the tools are connected to the use of logging fi les, which fall under the ‘Insecure Data’ category RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
  • 36. Exposed to sensitive information Clear text of sensitive information Frequency of Detection 0 1.000 2.000 3.000 4.000 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Insider
  • 37. RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? This vulnerability occurs when the developer does not use protection mechanisms appropriately when sharing or saving sensitive information Exposed to sensitive information
  • 38. Insider Exposed to sensitive information Clear text of sensitive information Frequency of Detection 0 1.000 2.000 3.000 4.000 Almost 60% of the vulnerabilities found by the tools are connected to the use of ‘Expose to sensitive information’, which fall under the ’Privacy’ category RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
  • 39. Insider Exposed to sensitive information Clear text of sensitive information Frequency of Detection 0 1.000 2.000 3.000 4.000 RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them? Almost 60% of the vulnerabilities found by the tools are connected to the use of ‘Expose to sensitive information’, which fall under the ’Privacy’ category Although according to the of fi cial documentation, the tool can detect each vulnerability on the OWASP top 10. We observed a partial mismatch between the documentation and the real vulnerability detected
  • 40. Insecure 
 Communication Insecure Data Privacy Improper Access Control External Storage Permission Code Obfuscator Insufficient Cryptography Improper Platform Use Code Tampering AndroBugs Trueseeing Insider RQ2: What are the capabilities of existing automated static analysis tools in terms of mobile app analyzability, frequency of detection, and complementarity among them?
  • 41. Key fi ndings of RQ2 - Frequency
  • 42. Di ff erent tools can detect di ff erent security-related concerns with di ff erent frequencies Key fi ndings of RQ2 - Frequency
  • 43. Key fi ndings of RQ2 - Frequency Di ff erent tools can detect di ff erent security-related concerns with di ff erent frequencies There are vulnerabilities almost never detected by these tools (e.g., Improper Access Control)
  • 44. Key fi ndings of RQ2 - Frequency Di ff erent tools can detect di ff erent security-related concerns with di ff erent frequencies There are vulnerabilities almost never detected by these tools (e.g., Improper Access Control) A deeper analysis of the actual support provided by these tools could be necessary
  • 45. Key fi ndings of RQ2 - Complementarity
  • 46. AndroBugs and Trueseeing can cover di ff erent security-related problems, suggesting a sort of complementarity between them
 Key fi ndings of RQ2 - Complementarity
  • 47. Key fi ndings of RQ2 - Complementarity AndroBugs and Trueseeing can cover di ff erent security-related problems, suggesting a sort of complementarity between them
 Insider can detect only a subset of vulnerabilities also detected by Androbug and Trueseeing
  • 49. The results obtained indicate that:
 
 
 
 
 
 
 
 
 Replication package Scan me! Summing up
  • 50. Replication package Scan me! Summing up The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 
 
 
 
 

  • 51. Replication package Scan me! Summing up The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 
 

  • 52. Replication package Scan me! Summing up The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible
  • 53. Replication package Scan me! Summing up Future Works The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible
  • 54. Replication package Scan me! Summing up Future Works The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible Manual evaluation of the accuracy of selected static analysis tools
  • 55. Replication package Scan me! Summing up Future Works The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible Manual evaluation of the accuracy of selected static analysis tools Expand the study by including other tools (e.g., machine learning tools)
  • 56. Replication package Scan me! Summing up Future Works Manual evaluation of the accuracy of selected static analysis tools Expand the study by including other tools (e.g., machine learning tools) Expand the dataset to include paid applications The results obtained indicate that:
 The selected tools can detect 11 high-level vulnerabilities categories and 41 low-level ones
 The selected tools only partially cover the top-10 risks by OWASP
 Practitioners should combine multiple tools to identify as many vulnerabilities as possible
  • 59. Selected tools We selected tools based on four criteria: Open-source and available on GitHub Take an apk file as input Perform a static analysis of the source code Can be run using the command line A large number of stars on GitHub
  • 60. Detection of tools AndroBugs: 52 categories includes: Permission Issues, Exposure of Sensitive Information, and Insecure Communications Trueeseeing: 7 types of security issues: Improper Platform Usage, Insecure Data, Insecure Communications, Insufficient Cryptography, Client Code Quality Issues, Code Tampering, and Reverse Engineering Insider: The tool cover the OWASP Top 10 vulnerabilities and support multiple programming language like Java, Kotlin, Swift, .NET and others
  • 61. Apk Selection Only apps available on Google Play Store Only apps with a minimum of 1000 installations Only apps with application size more than 1MB
  • 62. Risk vs vulnerability Vulnerability refers to a weakness in your hardware, software. It’s a gap through which a bad actor can gain access to your assets. In other words, threats exploit vulnerabilities.  Risk is a potential threat that can in some cases be exploited and become a vulnerability