Skip to main content
Advisories and updates on 2019 Novel Coronavirus (COVID-19)
smc
[at]
smu.edu.sg
(
)
Close
Toggle Dropdown
This Site
SMU Main Site
Toggle Dropdown
This Site
SMU Main Site
Toggle navigation
Main menu
Home
About Us
Our History
People
Faculty & Administration Team
Research Staff
Careers
Research
National Satellite of Excellence in Mobile System Security and Cloud Security (NSoE MSS-CS)
Conference & Workshop Participation
Research Seminars & Academic Visitors
News & Events
Life @ SMC
Contact Us
Main menu
Home
About Us
Our History
People
Faculty & Administration Team
Research Staff
Careers
Research
National Satellite of Excellence in Mobile System Security and Cloud Security (NSoE MSS-CS)
Conference & Workshop Participation
Research Seminars & Academic Visitors
News & Events
Life @ SMC
Contact Us
Large-Scale Vulnerability Assessment and Detection for Android Apps
You are here
Home
» Research »
National Satellite of Excellence in Mobile System Security and Cloud Security (NSoE MSS-CS)
» Large-Scale Vulnerability Assessment and Detection for Android Apps
Large-Scale Vulnerability Assessment and Detection for Android Apps
Objectives
Explore the comprehensive taxonomy of existing app vulnerabilities and build an app vulnerability analysis baseline
Evaluate the capability of different existing techniques towards vulnerability detection in specialized domains
Develop a domain-aware compositional vulnerability detection framework which is more scalable and more accurate
Existing Solutions and Their Limitations
Use generic syntax-based scanning and pattern matching
Output a lot of false positives
Cannot detect most of the data leakage-related vulnerabilities
Outcomes/Deliverables
Vulnerability knowledge base construction
Design knowledge base schema and meta-model
Large-scale apps collection and labelling (semi-automatic)
Evaluation of the existing vulnerability detection techniques
Compositional vulnerability detection guided by the knowledge base
Implement domain-specific analysis (source/library/native)
Aggregation of global analysis results
Practical Applications and Impact
Integrated as a part of an app screening pipeline
Detecting data leakage vulnerabilities in the real banking apps
SUBSCRIBE TO OUR NEWSLETTER
Keep up to date with what's happening at the Singapore Management University
Email Address
Newsletter checkboxes
Programme Announcements
Upcoming Information Sessions
News
Subscribe