TU Darmstadt / ULB / TUbiblio

Cheetah: Just-in-Time Taint Analysis for Android Apps

Nguyen Quang Do, Lisa ; Ali, Karim ; Livshits, Benjamin ; Bodden, Eric ; Smith, Justin ; Murphy-Hill, Emerson (2017)
Cheetah: Just-in-Time Taint Analysis for Android Apps.
Buenos Aires, Argentina
doi: 10.1109/ICSE-C.2017.20
Conference or Workshop Item, Bibliographie

Abstract

Current static-analysis tools are often long-running, which causes them to be sidelined into nightly build checks. As a result, developers rarely use such tools to detect bugs when writing code, because they disrupt their workflow. In this paper, we present Cheetah, a static taint analysis tool for Android apps that interleaves bug fixing and code development in the Eclipse integrated development environment. Cheetah is based on the novel concept of Just-in-Time static analysis that discovers and reports the most relevant results to the developer fast, and computes the more complex results incrementally later. Unlike traditional batch-style static-analysis tools, Cheetah causes minimal disruption to the developer's workflow. This video demo showcases the main features of Cheetah: https://www.youtube.com/watch?v=i_KQD-GTBdA.

Item Type: Conference or Workshop Item
Erschienen: 2017
Creators: Nguyen Quang Do, Lisa ; Ali, Karim ; Livshits, Benjamin ; Bodden, Eric ; Smith, Justin ; Murphy-Hill, Emerson
Type of entry: Bibliographie
Title: Cheetah: Just-in-Time Taint Analysis for Android Apps
Language: German
Date: May 2017
Publisher: Curran Associates, Inc.
Issue Number: 39
Book Title: 2017 IEEE/ACM 39th International Conference on Software Engineering Companion (ICSE-C)
Event Location: Buenos Aires, Argentina
DOI: 10.1109/ICSE-C.2017.20
Abstract:

Current static-analysis tools are often long-running, which causes them to be sidelined into nightly build checks. As a result, developers rarely use such tools to detect bugs when writing code, because they disrupt their workflow. In this paper, we present Cheetah, a static taint analysis tool for Android apps that interleaves bug fixing and code development in the Eclipse integrated development environment. Cheetah is based on the novel concept of Just-in-Time static analysis that discovers and reports the most relevant results to the developer fast, and computes the more complex results incrementally later. Unlike traditional batch-style static-analysis tools, Cheetah causes minimal disruption to the developer's workflow. This video demo showcases the main features of Cheetah: https://www.youtube.com/watch?v=i_KQD-GTBdA.

Identification Number: TUD-CS-2017-0220
Divisions: Profile Areas
Profile Areas > Cybersecurity (CYSEC)
Date Deposited: 07 Aug 2017 15:42
Last Modified: 14 Sep 2021 13:24
PPN:
Export:
Suche nach Titel in: TUfind oder in Google
Send an inquiry Send an inquiry

Options (only for editors)
Show editorial Details Show editorial Details