PLDI 2015 (series) / SOAP 2015 (series) / SOAP 2015 - 4th ACM SIGPLAN International Workshop on the State Of the Art in Program Analysis /
Droidel: A General Approach to Android Framework Modeling
We present an approach and tool for general-purpose modeling of Android for static analysis. Our approach is to explicate the reflective bridge between the Android framework and an application to make the framework source amenable to static analysis. Our Droidel tool does this by automatically generating application-specific stubs that summarize the reflective behavior for a particular app. The result is a program with a single entry-point that can be processed by any existing Java analysis platform (e.g., Soot, WALA, Chord). We compared call graphs constructed using Droidel to call graphs constructed using a state-of-the-art Android model and found that Droidel captures more concrete behaviors.
Sun 14 JunDisplayed time zone: Tijuana, Baja California change
Sun 14 Jun
Displayed time zone: Tijuana, Baja California change
14:00 - 15:30 | |||
14:00 30mTalk | Evaluating Call Graph Construction for JVM-hosted Language Implementations SOAP | ||
14:30 30mTalk | Droidel: A General Approach to Android Framework Modeling SOAP | ||
15:00 30mTalk | Understanding Caller-Sensitive Method Vulnerabilities: A Class of Access Control Vulnerabilities in the Java Platform SOAP |