| Title | An Android Application Vulnerability Mining Method Based On Static and Dynamic Analysis |
| Publication Type | Conference Paper |
| Year of Publication | 2020 |
| Authors | Chao, Wang, Qun, Li, XiaoHu, Wang, TianYu, Ren, JiaHan, Dong, GuangXin, Guo, EnJie, Shi |
| Conference Name | 2020 IEEE 5th Information Technology and Mechatronics Engineering Conference (ITOEC) |
| Keywords | Android app, Androids, composabiity, data mining, dynamic analysis, feature extraction, Human Behavior, Humanoid robots, pubcrawl, Resiliency, security, static analysis, Tools, vulnerability mining |
| Abstract | Due to the advantages and limitations of the two kinds of vulnerability mining methods of static and dynamic analysis of android applications, the paper proposes a method of Android application vulnerability mining based on dynamic and static combination. Firstly, the static analysis method is used to obtain the basic vulnerability analysis results of the application, and then the input test case of dynamic analysis is constructed on this basis. The fuzzy input test is carried out in the real machine environment, and the application security vulnerability is verified with the taint analysis technology, and finally the application vulnerability report is obtained. Experimental results show that compared with static analysis results, the method can significantly improve the accuracy of vulnerability mining. |
| DOI | 10.1109/ITOEC49072.2020.9141575 |
| Citation Key | chao_android_2020 |
An Android Application Vulnerability Mining Method Based On Static and Dynamic Analysis