A proposal for the privacy leakage verification tool for android application developers

Shinichi Matsumoto; Kouichi Sakurai

doi:10.1145/2448556.2448610

A proposal for the privacy leakage verification tool for android application developers

Shinichi Matsumoto, Kouichi Sakurai

Mathematical Informatics

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

7 Citations (Scopus)

Abstract

Nowadays, smartphone market has been growing rapidly, and smartphone has become essential as a business tool. One of the crucial advantages of a smartphone is an installable third-party application. Number of these has continued to grow explosively. However, vulnerabilities in smartphone applications are seemed as serious problem. This is not only for the smartphone users, also for smartphone application developers and/or vendors. Until now, most vulnerability tests on smartphone applications are targeted that has been packaged as a commercial product and distributed in application marketplaces. These tests are performed on dynamically on application binaries. In this paper, we aim to develop the static vulnerability verification tool that can be utilized for smartphone application developers and/or vendors in the implementation and/or test phase of development process. This tool intakes source codes and determine where to read the privacy information in the source codes, and determine where to write/send the information in there. Then analyze the privacy information transfer and/or transform flow and report the possibilities of privacy information leakage to application developers.

Original language	English
Title of host publication	Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013
DOIs	https://doi.org/10.1145/2448556.2448610
Publication status	Published - Apr 10 2013
Event	7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013 - Kota Kinabalu, Malaysia Duration: Jan 17 2013 → Jan 19 2013

Publication series

Name	Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013

Other

Other	7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013
Country	Malaysia
City	Kota Kinabalu
Period	1/17/13 → 1/19/13

All Science Journal Classification (ASJC) codes

Computer Networks and Communications
Information Systems

Access to Document

10.1145/2448556.2448610

Fingerprint Dive into the research topics of 'A proposal for the privacy leakage verification tool for android application developers'. Together they form a unique fingerprint.

Cite this

Matsumoto, S., & Sakurai, K. (2013). A proposal for the privacy leakage verification tool for android application developers. In Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013 [54] (Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013). https://doi.org/10.1145/2448556.2448610

A proposal for the privacy leakage verification tool for android application developers. / Matsumoto, Shinichi; Sakurai, Kouichi.

Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013. 2013. 54 (Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Matsumoto, S & Sakurai, K 2013, A proposal for the privacy leakage verification tool for android application developers. in Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013., 54, Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013, 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013, Kota Kinabalu, Malaysia, 1/17/13. https://doi.org/10.1145/2448556.2448610

Matsumoto S, Sakurai K. A proposal for the privacy leakage verification tool for android application developers. In Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013. 2013. 54. (Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013). https://doi.org/10.1145/2448556.2448610

Matsumoto, Shinichi ; Sakurai, Kouichi. / A proposal for the privacy leakage verification tool for android application developers. Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013. 2013. (Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013).

@inproceedings{9a0a67dcdea6408797f86f07cc76d164,

title = "A proposal for the privacy leakage verification tool for android application developers",

abstract = "Nowadays, smartphone market has been growing rapidly, and smartphone has become essential as a business tool. One of the crucial advantages of a smartphone is an installable third-party application. Number of these has continued to grow explosively. However, vulnerabilities in smartphone applications are seemed as serious problem. This is not only for the smartphone users, also for smartphone application developers and/or vendors. Until now, most vulnerability tests on smartphone applications are targeted that has been packaged as a commercial product and distributed in application marketplaces. These tests are performed on dynamically on application binaries. In this paper, we aim to develop the static vulnerability verification tool that can be utilized for smartphone application developers and/or vendors in the implementation and/or test phase of development process. This tool intakes source codes and determine where to read the privacy information in the source codes, and determine where to write/send the information in there. Then analyze the privacy information transfer and/or transform flow and report the possibilities of privacy information leakage to application developers.",

author = "Shinichi Matsumoto and Kouichi Sakurai",

year = "2013",

month = apr,

day = "10",

doi = "10.1145/2448556.2448610",

language = "English",

isbn = "9781450319584",

series = "Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013",

booktitle = "Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013",

note = "7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013 ; Conference date: 17-01-2013 Through 19-01-2013",

}

TY - GEN

T1 - A proposal for the privacy leakage verification tool for android application developers

AU - Matsumoto, Shinichi

AU - Sakurai, Kouichi

PY - 2013/4/10

Y1 - 2013/4/10

N2 - Nowadays, smartphone market has been growing rapidly, and smartphone has become essential as a business tool. One of the crucial advantages of a smartphone is an installable third-party application. Number of these has continued to grow explosively. However, vulnerabilities in smartphone applications are seemed as serious problem. This is not only for the smartphone users, also for smartphone application developers and/or vendors. Until now, most vulnerability tests on smartphone applications are targeted that has been packaged as a commercial product and distributed in application marketplaces. These tests are performed on dynamically on application binaries. In this paper, we aim to develop the static vulnerability verification tool that can be utilized for smartphone application developers and/or vendors in the implementation and/or test phase of development process. This tool intakes source codes and determine where to read the privacy information in the source codes, and determine where to write/send the information in there. Then analyze the privacy information transfer and/or transform flow and report the possibilities of privacy information leakage to application developers.

AB - Nowadays, smartphone market has been growing rapidly, and smartphone has become essential as a business tool. One of the crucial advantages of a smartphone is an installable third-party application. Number of these has continued to grow explosively. However, vulnerabilities in smartphone applications are seemed as serious problem. This is not only for the smartphone users, also for smartphone application developers and/or vendors. Until now, most vulnerability tests on smartphone applications are targeted that has been packaged as a commercial product and distributed in application marketplaces. These tests are performed on dynamically on application binaries. In this paper, we aim to develop the static vulnerability verification tool that can be utilized for smartphone application developers and/or vendors in the implementation and/or test phase of development process. This tool intakes source codes and determine where to read the privacy information in the source codes, and determine where to write/send the information in there. Then analyze the privacy information transfer and/or transform flow and report the possibilities of privacy information leakage to application developers.

UR - http://www.scopus.com/inward/record.url?scp=84875840141&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84875840141&partnerID=8YFLogxK

U2 - 10.1145/2448556.2448610

DO - 10.1145/2448556.2448610

M3 - Conference contribution

AN - SCOPUS:84875840141

SN - 9781450319584

T3 - Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013

BT - Proceedings of the 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013

T2 - 7th International Conference on Ubiquitous Information Management and Communication, ICUIMC 2013

Y2 - 17 January 2013 through 19 January 2013

ER -