Vulnerability Parser: A Static Vulnerability Analysis System for Android Applications

In the case of user information leakage, the security problem of Android applications is of great importance. How to quickly and efficiently detect Android application security vulnerabilities has become an urgent research topic in security field. Aiming at the key technologies such as vulnerability...

Full description

Saved in:
Bibliographic Details
Published in:Journal of physics. Conference series 2019-08, Vol.1288 (1), p.12053
Main Authors: Chang, Yingxian, Liu, Bin, Cong, Lianri, Deng, Hua, Li, Jiaming, Chen, Yuanzhe
Format: Article
Language:English
Subjects:
Parsers
Physics
Security
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In the case of user information leakage, the security problem of Android applications is of great importance. How to quickly and efficiently detect Android application security vulnerabilities has become an urgent research topic in security field. Aiming at the key technologies such as vulnerability detection in Android application, architecture is proposed for static analysis of android applications, namely the Vulnerability Parser. The architecture is composed of the following components, such as APK Decompressor, Manifest.xml Parser, Vulnerability Vector, and DexParser etc. Vulnerability Vector is extensible and detection rules can be configured for different vulnerabilities. The implementation of primary components is described in detail. Preliminary experimental results demonstrate its effectiveness.
ISSN:1742-6588
1742-6596
DOI:10.1088/1742-6596/1288/1/012053