English
Related papers

Related papers: CrySL: Validating Correct Usage of Cryptographic A…

200 papers

Android applications are frequently plagiarized or repackaged, and software obfuscation is a recommended protection against these practices. However, there is very little data on the overall rates of app obfuscation, the techniques used, or…

Cryptography and Security · Computer Science 2018-02-21 Dominik Wermke , Nicolas Huaman , Yasemin Acar , Brad Reaves , Patrick Traynor , Sascha Fahl

The Android unrestricted application market, being of open source nature, has made it a popular platform for third-party applications reaching millions of smart devices in the world. This tremendous increase in applications with an…

Cryptography and Security · Computer Science 2021-09-09 Stylianos Monogios , Konstantinos Limniotis , Nicholas Kolokotronis , Stavros Shiaeles

Numerous tools rely on automatic categorization of Android apps as part of their methodology. However, incorrect categorization can lead to inaccurate outcomes, such as a malware detector wrongly flagging a benign app as malicious. One such…

Software Engineering · Computer Science 2023-10-12 Marco Alecci , Jordan Samhi , Tegawendé F. Bissyandé , Jacques Klein

Increasing interest in securing the Android ecosystem has spawned numerous efforts to assist app developers in building secure apps. These efforts have resulted in tools and techniques capable of detecting vulnerabilities (and malicious…

Cryptography and Security · Computer Science 2019-08-06 Venkatesh-Prasad Ranganath , Joydeep Mitra

Cross-app collaboration via inter-component communication is a fundamental mechanism on Android. Although it brings the benefits such as functionality reuse and data sharing, a threat called component hijacking is also introduced. By…

Cryptography and Security · Computer Science 2018-01-16 Daoyuan Wu , Yao Cheng , Debin Gao , Yingjiu Li , Robert H. Deng

Blockchains require deterministic execution in order to reach consensus. This is often guaranteed in languages designed to write smart contracts, such as Solidity. Application-specific blockchains or ``appchains'' allow the blockchain…

Cryptography and Security · Computer Science 2023-08-22 Jasper Surmont , Weihong Wang , Tom Van Cutsem

Sophisticated evasion tactics in malicious Android applications, combined with their intricate behavioral semantics, enable attackers to conceal malicious logic within legitimate functions, underscoring the critical need for robust and…

Software Engineering · Computer Science 2025-09-12 Guangyu Zhang , Xixuan Wang , Shiyu Sun , Peiyan Xiao , Kun Sun , Yanhai Xiong

The correct use of cryptography is central to ensuring data security in modern software systems. Hence, several academic and commercial static analysis tools have been developed for detecting and mitigating crypto-API misuse. While…

Cryptography and Security · Computer Science 2026-02-05 Amit Seal Ami , Scott Marsden , Kevin Moran , Denys Poshyvanyk , Adwait Nadkarni

For library developers, understanding how their Application Programming Interfaces (APIs) are used in the field can be invaluable. Knowing how clients are using their APIs allows for data-driven decisions on prioritising bug reports,…

Software Engineering · Computer Science 2025-06-16 Ahmed Zaki , Cristian Cadar

[Background] Web communication is universal in cyberspace, and security risks in this domain are devastating. [Aims] We analyzed the prevalence of six security smells in mobile app servers, and we investigated the consequence of these…

Cryptography and Security · Computer Science 2021-08-17 Pascal Gadient , Marc-Andrea Tarnutzer , Oscar Nierstrasz , Mohammad Ghafari

Android apps can hold secret strings of themselves such as cloud service credentials or encryption keys. Leakage of such secret strings can induce unprecedented consequences like monetary losses or leakage of user private information. In…

Cryptography and Security · Computer Science 2025-01-15 Lili Wei , Heqing Huang , Shing-Chi Cheung , Kevin Li

Human values are an important aspect of life and should be supported in ubiquitous technologies such as mobile applications (apps). There has been a lot of focus on fixing certain kinds of violation of human values, especially privacy,…

Software Engineering · Computer Science 2021-09-30 Conghui Li , Humphrey O. Obie , Hourieh Khalajzadeh

Android is among the most targeted platform by attackers. While attackers are improving their techniques, traditional solutions based on static and dynamic analysis have been also evolving. In addition to the application code, Android…

Cryptography and Security · Computer Science 2021-07-08 Sevil Sen , Burcu Can

In this paper, we seek to better understand Android obfuscation and depict a holistic view of the usage of obfuscation through a large-scale investigation in the wild. In particular, we focus on four popular obfuscation approaches:…

Cryptography and Security · Computer Science 2018-01-08 Shuaike Dong , Menghao Li , Wenrui Diao , Xiangyu Liu , Jian Liu , Zhou Li , Fenghao Xu , Kai Chen , Xiaofeng Wang , Kehuan Zhang

Third-party Software Development Kits (SDKs) are widely adopted in Android app development, to effortlessly accelerate development pipelines and enhance app functionality. However, this convenience raises substantial concerns about…

Cryptography and Security · Computer Science 2025-06-19 Mark Huasong Meng , Chuan Yan , Qing Zhang , Zeyu Wang , Kailong Wang , Sin Gee Teo , Guangdong Bai , Jin Song Dong

Unique challenges arise when testing mobile applications due to their prevailing event-driven nature and complex contextual features (e.g. sensors, notifications). Current automated input generation approaches for Android apps are typically…

Software Engineering · Computer Science 2018-01-22 Kevin Moran , Mario Linares-Vasquez , Carlos Bernal-Cardenas , Christopher Vendome , Denys Poshyvanyk

End-users seldom read verbose privacy policies, leading app stores like Google Play to mandate simplified data safety declarations as a user-friendly alternative. However, these self-declared disclosures often contradict the full privacy…

Artificial Intelligence · Computer Science 2026-03-11 Bhanuka Silva , Dishanika Denipitiyage , Anirban Mahanti , Aruna Seneviratne , Suranga Seneviratne

Android app developers extensively employ code reuse, integrating many third-party libraries into their apps. While such integration is practical for developers, it can be challenging for static analyzers to achieve scalability and…

Software Engineering · Computer Science 2024-02-12 Jordan Samhi , Tegawendé F. Bissyandé , Jacques Klein

A common security architecture is based on the protection of certain resources by permission checks (used e.g., in Android and Blackberry). It has some limitations, for instance, when applications are granted more permissions than they…

Software Engineering · Computer Science 2023-05-05 Alexandre Bartel , Jacques Klein , Martin Monperrus , Yves Le Traon

A growing concern with advertisement libraries on Android is their ability to exfiltrate personal information from their host applications. While previous work has looked at the libraries' abilities to measure private information on their…

Cryptography and Security · Computer Science 2013-07-24 Theodore Book , Dan S. Wallach
‹ Prev 1 4 5 6 7 8 10 Next ›