Security Testing Of Android Based Covid Tracer Applications

机译：基于Android基于Covid示踪应用程序的安全测试

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Digital contact tracing application is a digital measure implemented by many countries across the globe in response to the Covid-19 outbreak. Use of applications like these present certain concerns regarding user privacy and application security. In this paper, four Covid-19 tracing applications were tested using MobSF and drozer to check for risks in the code (static analysis) and determine potential attack surfaces. The observations and findings were compiled in tabular form, including the OWASP mobile top 10 issues, as well as the CWE that were detected using MobSF. The potential attack surfaces detected using drozer were also listed.

机译：数字联系跟踪应用程序是全球许多国家实施的数字措施，以应对Covid-19爆发。使用这些应用程序的使用对用户隐私和应用程序安全的某些问题。在本文中，使用Mobsf和Drozer测试了四个Covid-19跟踪应用，以检查代码（静态分析）中的风险并确定潜在的攻击表面。观察和调查结果以表格形式编制，包括OWASP移动前10个问题，以及使用MOBSF检测的CWE。还列出了使用Drozer检测到的潜在攻击表面。

著录项

来源
《IEEE Asia-Pacific Conference on Computer Science and Data Engineering》|2020年|1-6|共6页
会议地点
作者
Narmada Kohli; Mahsa Mohaghegh;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
COVID-19; Privacy; Government; Static analysis; Tools; Application security; Mobile applications;

机译：Covid-19;隐私;政府;静态分析;工具;应用程序安全;移动应用程序;

相似文献

外文文献
中文文献
专利

1. APSET, an Android aPplication SEcurity Testing tool for detecting intent-based vulnerabilities [J] . Sebastien Salva, Stassia R. Zafimiharisoa International Journal on Software Tools for Technology Transfer . 2015,第2期

机译：APSET，Android aPplication SEcurity测试工具，用于检测基于意图的漏洞
2. Haversine Algorithm Design using the Google Maps API Method for Android-based Public Security Applications [J] . Gerzha Hayat Prakarsha, Herlina Dessy Kristianty Lumbantobing, M. Rifqi Ramadhan, International Journal of Computer Trends and Technology . 2021,第2期

机译：Haversine算法设计使用Google Maps API方法用于基于Android的公共安全应用程序
3. Entropy-based security risk measurement for Android mobile applications [J] . Deypir Mahmood Soft computing: A fusion of foundations, methodologies and applications . 2019,第16期

机译：基于熵的安全风险风险测量，适用于Android移动应用程序
4. Automated security testing of Android applications for secure mobile development [C] . Francisco Palma, Nuno Realista, Carlos Serrão, International Conference on Software Testing, Verification and Validation Workshops . 2020

机译：自动化Android应用程序的安全测试，以实现安全的移动开发
5. Securite des applications Android: Menaces et contre-mesures =ANDROID APPLICATIONS SECURITY : THREATS AND COUNTERMEASURES [D] . Hadhiri, Amine. 2012

机译：Android应用程序安全性：威胁与对策= ANDROID应用程序安全性：威胁与对策
6. A detection method for android application security based on TF-IDF and machine learning [O] . Hongli Yuan, Yongchuan Tang, Wenjuan Sun, 2020

机译：基于TF-IDF和机器学习的Android应用安全的检测方法
7. APSET, an Android aPplication SEcurity Testing tool for detecting intent-based vulnerabilities [O] . Sébastien Salva, Stassia R. Zafimiharisoa 2014

机译：apsET，一款android application安全测试工具，用于检测基于意图的漏洞。

Security Testing Of Android Based Covid Tracer Applications

摘要

著录项

相似文献

相关主题

期刊订阅