SeMA introduces a methodology for secure Android app development, focusing on detecting and preventing vulnerabilities. It utilizes storyboards to specify app behavior, conducts information flow analysis, rule checking, and code generation to enhance security. The approach aims to address known vulnerabilities in mobile apps effectively.
Recent research efforts have highlighted the importance of securing mobile apps due to potential risks associated with personal data exposure. Despite existing tools and techniques, vulnerabilities persist in mobile apps, emphasizing the need for a preventive approach like SeMA. By integrating security into every phase of software development, SeMA aims to reduce the occurrence of vulnerabilities during implementation.
The methodology leverages Model Driven Development principles and extends traditional storyboarding practices to capture an app's behavior comprehensively. Through iterative refinement and verification of security properties at an abstract level, developers can ensure secure app designs without compromising on functionality.
Evaluation results demonstrate SeMA's effectiveness in detecting and preventing a significant number of known vulnerabilities in Android apps. By combining information flow analysis, rule checking, and code generation techniques, SeMA offers a comprehensive approach to enhancing mobile app security.
Til et andet sprog
fra kildeindhold
arxiv.org
Vigtigste indsigter udtrukket fra
by Joydeep Mitr... kl. arxiv.org 03-12-2024
https://arxiv.org/pdf/2001.10052.pdfDybere Forespørgsler