A certification process for android applications

Harsha K. Kalutarage, Padmanabhan Krishnan, Siraj Ahmed Shaikh*

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionResearchpeer-review

Abstract

The last decade has seen the emergence of mobile platform for software applications. An important factor in the remarkable growth in this area is the development of Android and a community of mobile application developers sharing open sourced and free software. While the emphasis for Android has been openness and user control, this brings with it challenges of validating and securing mobile apps. Development of dedicated tools and techniques to test mobile apps for functional and nonfunctional properties has been limited so far. Such an effort is made more difficult given frequent version updates for Android in its short history (over ten in ten years). The need for better security and assurance for mobile apps, on the other hand, is ever so more as apps providing important services such as banking, navigation, and identity management emerge. This paper attempts to converge on current concepts and practices of testing mobile apps. We provide a structured checklist approach to vulnerability assessment and permission mapping of mobile apps, which is underpinned by a set of available tools, and ultimately contribute to a framework for certification of mobile apps. The proposed certification process combines diverse sources and has a focus on automation.

Original languageEnglish
Title of host publicationInformation Technology and Open Source
Subtitle of host publicationApplications for Education, Innovation, and Sustainability - SEFM 2012 Satellite Events, InSuEdu, MoKMaSD, and OpenCert, Revised Selected Papers
PublisherSpringer
Pages288-303
Number of pages16
ISBN (Print)9783642543371
DOIs
Publication statusPublished - 1 Jan 2014
Event10th International Conference on Software Engineering and Formal Methods, SEFM 2012, 1st International Symposium on InSuEdu 2012, 1st International Symposium on MoKMaSD 2012, 6th International Workshop on Foundations and Techniques for OpenCert 2012 - Thessaloniki, Greece
Duration: 1 Oct 20125 Oct 2012
https://dl.acm.org/citation.cfm?id=2404232&picked=prox

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume7991 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference10th International Conference on Software Engineering and Formal Methods, SEFM 2012, 1st International Symposium on InSuEdu 2012, 1st International Symposium on MoKMaSD 2012, 6th International Workshop on Foundations and Techniques for OpenCert 2012
Country/TerritoryGreece
CityThessaloniki
Period1/10/125/10/12
Internet address

Fingerprint

Dive into the research topics of 'A certification process for android applications'. Together they form a unique fingerprint.

Cite this