A Uma Técnica Prognóstica para Desenvolvimento Seguro de Aplicativo Android

  • Ricardo Luis Dias Martins Ferreira Military Institute ofEngineering (IME)
  • Anderson F. P. dos Santos Military Institute of Engineering (IME)
  • Ricardo Choren Military Institute of Engineering (IME)

Abstract

Searching for vulnerabilities in Android apps through approaches based on the app's dex bytecode has been applied to a lot of researches. This approach, called late detection, is applied to apps already released, and usually doesn't identify vulnerabilities before users have been exposed. This article presents a method based on static analysis with matching patterns for identifying these vulnerabilities beforehand, during the app development, avoiding users' exposure. The presented technique was evaluated by an experimental test proof applied to open-source applications, analyzed by appDroidAnalyzer, identifying dozens of apps affected by vulnerabilities in their source code.

Published
2017-08-30
How to Cite
FERREIRA, Ricardo Luis Dias Martins; DOS SANTOS, Anderson F. P.; CHOREN, Ricardo. A Uma Técnica Prognóstica para Desenvolvimento Seguro de Aplicativo Android. Journal on Advances in Theoretical and Applied Informatics, [S.l.], v. 3, n. 1, p. 39-46, aug. 2017. ISSN 2447-5033. Available at: <http://revista.univem.edu.br/jadi/article/view/2443>. Date accessed: 19 nov. 2017.