Mobile Application Security Using Static and Dynamic Analysis
Department
Information Technology
Document Type
Article
Publication Date
1-1-2021
Abstract
The mobile applications have overtaken web applications in the rapid growing of the mobile app market. As mobile application development environment is open source, it attracts new inexperienced developers to gain hands-on experience with application development. However, the data security and vulnerable coding practice are two major issues. Among all mobile operating systems including iOS (by Apple), Android (by Google) and Blackberry (RIM), Android remains the dominant OS on a global scale. The majority of malicious mobile attacks take advantage of vulnerabilities in mobile applications, such as sensitive data leakage via the inadvertent or side channel, unsecured sensitive data storage, data transition and many others. Most of these vulnerabilities can be detected during mobile application analysis phase. In this chapter, we explored some existing vulnerability detection tools available for static and dynamic analysis and hands-on exploration of using them to detect vulnerabilities. We suggest that there is a need of new tools within the development environment for security analysis in the process of application development.
Journal Title
Studies in Computational Intelligence
Journal ISSN
1860949X
Volume
919
First Page
443
Last Page
459
Digital Object Identifier (DOI)
10.1007/978-3-030-57024-8_20