%0 Conference Proceedings
%T APPregator: A Large-Scale Platform for Mobile Security Analysis
%+ Dipartimento di Informatica, Bioingegneria, Robotica e Ingegneria dei Sistemi [Genova] (DIBRIS)
%A Verderame, Luca
%A Caputo, Davide
%A Romdhana, Andrea
%A Merlo, Alessio
%Z Part 2: Security Testing
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 32th IFIP International Conference on Testing Software and Systems (ICTSS)
%C Naples, Italy
%Y Valentina Casola
%Y Alessandra De Benedictis
%Y Massimiliano Rak
%I Springer International Publishing
%3 Testing Software and Systems
%V LNCS-12543
%P 73-88
%8 2020-12-09
%D 2020
%R 10.1007/978-3-030-64881-7_5
%K App analysis
%K Static and dynamic analysis
%K Security and privacy
%Z Computer Science [cs]
%Z Computer Science [cs]/Networking and Internet Architecture [cs.NI]Conference papers
%X The Google Play Store currently includes up to 2.8M apps. Nonetheless, it is rather straightforward for a user to quickly retrieve the app that matches her tastes, as Google provides a reliable search engine. However, it is likewise almost impossible to select apps according to a security footprint (e.g., all apps that enforce SSL pinning). To overcome this limitation, this paper presents APPregator, a platform which allows security analysts to i) download apps from multiple app stores, ii) perform automated security analysis (both static and dynamic), and iii) aggregate the results according to user-defined security constraints (e.g., vulnerability patterns).The empirical assessment of APPregator on a set of 200.000 apps taken from the Google Play Store and Aptoide suggests that the current implementation grants a good level of performance and reliability. APPregator will be made freely available to the research community by the end of 2020.
%G English
%Z TC 6
%Z WG 6.1
%2 https://inria.hal.science/hal-03239815/document
%2 https://inria.hal.science/hal-03239815/file/497758_1_En_5_Chapter.pdf
%L hal-03239815
%U https://inria.hal.science/hal-03239815
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-WG
%~ IFIP-TC6
%~ IFIP-WG6-1
%~ IFIP-ICTSS
%~ IFIP-LNCS-12543