Lars Baumgärtner, Pablo Graubner, Nils Schmidt, Bernd Freisleben
{"title":"Andro Lyze:高效Android应用分析的分布式框架","authors":"Lars Baumgärtner, Pablo Graubner, Nils Schmidt, Bernd Freisleben","doi":"10.1109/MobServ.2015.20","DOIUrl":null,"url":null,"abstract":"In recent years, the number of mobile applications has grown significantly. Not surprisingly, various security and privacy concerns associated with mobile applications have emerged. Several researchers are addressing these problems by analyzing the security properties of mobile application code. Most of the security checks rely on custom scripts and are quite heterogeneous with respect to dependencies, deployment and reporting. In this paper, we present AndroLyze, a distributed framework with unified logging and reporting functionality to perform security checks on large numbers of applications in an efficient manner. AndroLyze provides optimized scheduling algorithms for distributing static code analysis tasks across several machines. Moreover, AndroLyze can handle several versions of a single mobile application to generate a security track record over many versions. To demonstrate the benefits of AndroLyze, we have analyzed the Top Free 500 Android applications of all categories in Google Play collected over three years. The resulting data set consists of almost 40,000 mobile applications and requires about 227 GB of storage space.","PeriodicalId":166267,"journal":{"name":"2015 IEEE International Conference on Mobile Services","volume":"38 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-06-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Andro Lyze: A Distributed Framework for Efficient Android App Analysis\",\"authors\":\"Lars Baumgärtner, Pablo Graubner, Nils Schmidt, Bernd Freisleben\",\"doi\":\"10.1109/MobServ.2015.20\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In recent years, the number of mobile applications has grown significantly. Not surprisingly, various security and privacy concerns associated with mobile applications have emerged. Several researchers are addressing these problems by analyzing the security properties of mobile application code. Most of the security checks rely on custom scripts and are quite heterogeneous with respect to dependencies, deployment and reporting. In this paper, we present AndroLyze, a distributed framework with unified logging and reporting functionality to perform security checks on large numbers of applications in an efficient manner. AndroLyze provides optimized scheduling algorithms for distributing static code analysis tasks across several machines. Moreover, AndroLyze can handle several versions of a single mobile application to generate a security track record over many versions. To demonstrate the benefits of AndroLyze, we have analyzed the Top Free 500 Android applications of all categories in Google Play collected over three years. The resulting data set consists of almost 40,000 mobile applications and requires about 227 GB of storage space.\",\"PeriodicalId\":166267,\"journal\":{\"name\":\"2015 IEEE International Conference on Mobile Services\",\"volume\":\"38 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-06-27\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 IEEE International Conference on Mobile Services\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MobServ.2015.20\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 IEEE International Conference on Mobile Services","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MobServ.2015.20","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Andro Lyze: A Distributed Framework for Efficient Android App Analysis
In recent years, the number of mobile applications has grown significantly. Not surprisingly, various security and privacy concerns associated with mobile applications have emerged. Several researchers are addressing these problems by analyzing the security properties of mobile application code. Most of the security checks rely on custom scripts and are quite heterogeneous with respect to dependencies, deployment and reporting. In this paper, we present AndroLyze, a distributed framework with unified logging and reporting functionality to perform security checks on large numbers of applications in an efficient manner. AndroLyze provides optimized scheduling algorithms for distributing static code analysis tasks across several machines. Moreover, AndroLyze can handle several versions of a single mobile application to generate a security track record over many versions. To demonstrate the benefits of AndroLyze, we have analyzed the Top Free 500 Android applications of all categories in Google Play collected over three years. The resulting data set consists of almost 40,000 mobile applications and requires about 227 GB of storage space.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
