Privacy Analysis of Android Apps: Implicit Flows and Quantitative Analysis

Abstract : A static analysis is presented, based on the theory of abstract interpretation, for verifying privacy policy compliance by mobile applications. This includes instances where, for example, the application releases the user’s location or device ID without authorization. It properly extends previous work on datacentric semantics for verification of privacy policy compliance by mobile applications by (i) tracking implicit information flow, and (ii) performing a quantitative analysis of information leakage. This yields to a novel combination of qualitative and quantitative analyses of information flows in mobile applications.
Type de document :
Communication dans un congrès
Khalid Saeed; Władysław Homenda. 14th Computer Information Systems and Industrial Management (CISIM), Sep 2015, Warsaw, Poland. Springer, Lecture Notes in Computer Science, LNCS-9339, pp.3-23, 2015, Computer Information Systems and Industrial Management. 〈10.1007/978-3-319-24369-6_1〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01444523
Contributeur : Hal Ifip <>
Soumis le : mardi 24 janvier 2017 - 10:46:17
Dernière modification le : mardi 24 janvier 2017 - 10:54:06
Document(s) archivé(s) le : mardi 25 avril 2017 - 14:13:16

Fichier

978-3-319-24369-6_1_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Gianluca Barbon, Agostino Cortesi, Pietro Ferrara, Marco Pistoia, Omer Tripp. Privacy Analysis of Android Apps: Implicit Flows and Quantitative Analysis. Khalid Saeed; Władysław Homenda. 14th Computer Information Systems and Industrial Management (CISIM), Sep 2015, Warsaw, Poland. Springer, Lecture Notes in Computer Science, LNCS-9339, pp.3-23, 2015, Computer Information Systems and Industrial Management. 〈10.1007/978-3-319-24369-6_1〉. 〈hal-01444523〉

Partager

Métriques

Consultations de la notice

58

Téléchargements de fichiers

11