Title | Source Code Analysis for Mobile Applications for Privacy Leaks |
Publication Type | Conference Paper |
Year of Publication | 2021 |
Authors | Ali, Ahtasham, Al-Perumal, Sundresan |
Conference Name | 2021 IEEE Madras Section Conference (MASCON) |
Keywords | classification, codes, dynamic analysis, Human Behavior, human factors, machine learning, Metrics, mobile applications, Operating systems, Personal digital assistants, Policy Based Governance, privacy, privacy leaks, pubcrawl, resilience, Resiliency, Safe Coding, security, smart devices, Source code analysis |
Abstract | Intelligent gadgets for example smartphones, tablet phones, and personal digital assistants play an increasingly important part in our lives and have become indispensable in our everyday routines. As a result, the market for mobile apps tends to grow at a rapid rate, and mobile app utilization has long eclipsed that of desktop software. The applications based on these smartphones are becoming vulnerable due to the use of open-source operating systems in these smart devices. These applications are vulnerable to smartphones because of memory leaks; they can steal personal data, hack our smartphones, and monitor our private activity, giving anyone significant financial loss. Because of these issues, smartphone security plays a vital role in our daily lives. The Play Store contains unrated applications which any unprofessional developer can develop, and these applications do not pass through the rigorous process of testing and analysis of code leaks. The existing developed system does not include a stringent procedure to examine and investigate source code to detect such vulnerabilities among mobile applications. This paper presented a dynamic analysis-based robust system for Source Code Analysis of Mobile Applications for Privacy Leaks using a machine learning algorithm. Furthermore, our framework is called Source Code Analysis of Mobile Applications (SCA-MA), which combines DynaLog and our machine learning-based classifier for Source Code Analysis of Mobile Applications. Our dataset will contain around 20000 applications to test and analyze vulnerabilities. We will perform dynamic analysis and separate the classification of vulnerable applications and safe applications. Our results show that we can detect vulnerabilities through our proposed system while reviewing code and provide better results than other existing frameworks. We have evaluated our large dataset with the pervasive way so we can detect even small privacy leak which can harm our app. Finally, we have compared results with existing methods, and framework performance is better than other methods. |
DOI | 10.1109/MASCON51689.2021.9563443 |
Citation Key | ali_source_2021 |