Mobile Health Application Security Assesment Based on OWASP Top 10 Mobile Vulnerabilities

2022 International Conference on Information Technology Systems and Innovation (ICITSI) Pub Date : 2022-11-08 DOI:10.1109/ICITSI56531.2022.9970949

Dimas Febriyan Priambodo, Guntur Satria Ajie, Hendy Aulia Rahman, Aldi Cahya Fajar Nugraha, Aulia Rachmawati, Marcella Risky Avianti

{"title":"Mobile Health Application Security Assesment Based on OWASP Top 10 Mobile Vulnerabilities","authors":"Dimas Febriyan Priambodo, Guntur Satria Ajie, Hendy Aulia Rahman, Aldi Cahya Fajar Nugraha, Aulia Rachmawati, Marcella Risky Avianti","doi":"10.1109/ICITSI56531.2022.9970949","DOIUrl":null,"url":null,"abstract":"The increase of smartphone users in Indonesia is the reason for various sectors to improve their services through mobile applications, including the healthcare sector. The healthcare sector is considered a critical sector as it stores various health data of its users classified as confidential. This is the basis for the need to conduct a security analysis for mobile health applications, which are widely used in Indonesia. MobSF (Mobile Security Framework) and MARA (Mobile Application Reverse Engineering and Analysis) Framework are mobile application security analysis methods capable of assessing security levels based on OWASP (Open Web Application Security Project) Mobile Top 10 2016 classification, CVSS (Common Vulnerability Scoring System) and CWE (Common Weakness Enumeration). It is expected that the test results with MobSF and MARA can provide a safety metric for mobile health applications as a means of safety information for users and application developers.","PeriodicalId":439918,"journal":{"name":"2022 International Conference on Information Technology Systems and Innovation (ICITSI)","volume":"26 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-11-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 International Conference on Information Technology Systems and Innovation (ICITSI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICITSI56531.2022.9970949","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The increase of smartphone users in Indonesia is the reason for various sectors to improve their services through mobile applications, including the healthcare sector. The healthcare sector is considered a critical sector as it stores various health data of its users classified as confidential. This is the basis for the need to conduct a security analysis for mobile health applications, which are widely used in Indonesia. MobSF (Mobile Security Framework) and MARA (Mobile Application Reverse Engineering and Analysis) Framework are mobile application security analysis methods capable of assessing security levels based on OWASP (Open Web Application Security Project) Mobile Top 10 2016 classification, CVSS (Common Vulnerability Scoring System) and CWE (Common Weakness Enumeration). It is expected that the test results with MobSF and MARA can provide a safety metric for mobile health applications as a means of safety information for users and application developers.

查看原文本刊更多论文

基于OWASP的移动医疗应用安全十大漏洞评估

印度尼西亚智能手机用户的增加是各个部门通过移动应用程序改善服务的原因，包括医疗保健部门。医疗保健部门被认为是一个关键部门，因为它存储了被列为机密的用户的各种健康数据。这是需要对在印度尼西亚广泛使用的移动保健应用程序进行安全分析的基础。MobSF(移动安全框架)和MARA(移动应用逆向工程与分析)框架是基于OWASP(开放Web应用安全项目)2016年移动十大分类、CVSS(常见漏洞评分系统)和CWE(常见弱点枚举)的移动应用安全分析方法，能够评估安全级别。预计MobSF和MARA的测试结果可以为移动健康应用程序提供安全度量，作为用户和应用程序开发人员提供安全信息的手段。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 International Conference on Information Technology Systems and Innovation (ICITSI)

自引率

0.00%

发文量