Inter-Application Communication Testing of Android Applications Using Intent 
Fuzzing

Aslam, Hafiz Ahmad Shahzad

Inter-Application Communication Testing of Android Applications Using Intent Fuzzing

Aslam, H. A. S. (2014). Inter-Application Communication Testing of Android Applications Using Intent Fuzzing. Master Thesis, Universität des Saarlandes, Saarbrücken.

Item is 公開

表示: 全項目非表示: 全項目

基本情報

表示: 非表示:

アイテムのパーマリンク: https://hdl.handle.net/11858/00-001M-0000-0026-C91D-4 版のパーマリンク: https://hdl.handle.net/11858/00-001M-0000-0029-69FF-A

資料種別: 学位論文

ファイル

表示: ファイル

非表示: ファイル

:

2014_Shahzad_Master Thesis.pdf (全文テキスト（全般）), 2MB

ファイルのパーマリンク:
-

ファイル名:
2014_Shahzad_Master Thesis.pdf

説明:
-

OA-Status:

閲覧制限:
制限付き (Max Planck Institute for Informatics, MSIN; )

MIMEタイプ / チェックサム:
application/pdf

技術的なメタデータ:

著作権日付:
-

著作権情報:
-

CCライセンス:
-

作成者

表示:

非表示:

作成者:
Aslam, Hafiz Ahmad Shahzad¹, 著者
Zeller, Andreas², 学位論文主査
Hammer, Christian², 監修者

所属:
1International Max Planck Research School, MPI for Informatics, Max Planck Society, ou_1116551
2External Organizations, ou_persistent22

内容説明

表示:

非表示:

キーワード: -

要旨: Testing is a crucial stage in the software development process that is used to uncover bugs and potential security threats. If not conducted thoroughly, buggy software may cause erroneous, malicious and even harmful behavior. Unfortunately in most software systems, testing is either completely neglected or not thoroughly conducted. One such example is Google's popular mobile platform, Android OS, where inter-application communication is not properly tested. This is because of the difficulty which it possesses in the development overhead and the manual labour required by developers in setting up the testing environment. Consequently, the lack of Android application testing continues to cause Android users to experience erroneous behavior and sudden crashes, impacting user experience and potentially resulting in financial losses. When a caller application attempts to communicate with a potentially buggy application, the caller application will suffer functional errors or it may even potentially crash. Incidentally, the user will complain that the caller application is not providing the promised functionality, resulting in a devaluation of the application's user rating. Successive failures will no longer be considered as isolated events, potentially crippling developer credibility of the calling application. In this thesis we present an automated tester for inter-application communication in Android applications. The approach used for testing is called Intent based Testing. Android applications are typically divided into multiple components that communicate via intents: messages passed through Android OS to coordinate operations between the different components. Intents are also used for inter-application communication, rendering them relevant for security. In this work, we designed and built a fully automated tool called IntentFuzzer, to test the stability of inter-application communication of Android applications using intents. Firstly, it statically analyzes the application to generate intents. Next, it tests the inter-application communication by fuzzing them, that is, injecting random input values that uncover unwanted behavior. In this way, we are able to expose several new defects including potential security issues which we discuss briefly in the Evaluation section.

資料詳細

表示:

非表示:

言語: eng - English

日付: 受理: 2014-06-24出版: 2014

出版の状態: 出版

ページ: 51 p.

出版情報: Saarbrücken : Universität des Saarlandes

目次: -

査読: -

識別子（DOI, ISBNなど）: BibTex参照ID: 2014Aslam

学位: 修士号 (Master)

アイテム詳細

基本情報

ファイル

関連URL

作成者

内容説明

資料詳細

関連イベント

訴訟

Project information

出版物