Browse > Article
http://dx.doi.org/10.3745/KTCCS.2013.2.10.445

A Proposal for "Security Verification Method for Implementation of Secure Android Mobile Application"  

Hur, Hwan Seok (고려대학교 정보보호대학원)
Kang, Sung Hoon (고려대학교 정보보호대학원)
Kim, Seung Joo (고려대학교 정보보호대학원)
Publication Information
KIPS Transactions on Computer and Communication Systems / v.2, no.10, 2013 , pp. 445-460 More about this Journal
Abstract
Mobile applications today are being offered as various services depending on the mobile device and mobile environment of users. This increase in mobile applications has shifted the spotlight to their vulnerability. As an effective method of security verification, this paper proposes "phase-wise security verification for the implementation of mobile applications". This method allows additional security verification by covering specific items across a wider range compared to existing methods. Based on the identified weaknesses, it detects the cause of vulnerability and monitors the related settings.
Keywords
Android App Vulnerability; App Security Verification; Mobile App Vulnerability Checklist;
Citations & Related Records
연도 인용수 순위
  • Reference
1 ArXan Technologies Inc, "State of Security in the App Economy : Mobile Apps Under Attack", ArXan Technologies Research Report. Vol.1, pp.2-15, 2012.
2 TrendLabs, "2012 Mobile Threat and Security Roundup Repeating History", TrendMicro Inc, pp.2-12, 2012.
3 MOSPA, "Mobile e-Government service App Source code Security Verification Guide(V2.0)", 2012.
4 MOSPA, "Security Weakness verification Guide of Software ", 2012.
5 MOSPA, "Security Verification Guide of Software Development", 2012.
6 Shanai Ardi and Nahid Shahmehri, "Introducing Vulnerability Awareness to Common Criteria's Security Targets", IEEE Computer society, In Proceedings of the Fourth International Conference on Software Engineering Advances(ICSEA), pp. 421-423, 2009.
7 William Enck, Machigar Ongtang, and Patrick McDaniel - "Understanding Android Security", IEEE Security and Privacy 7(1), pp.50-57, 2009.   DOI   ScienceOn
8 Jesse Burns, "Developing Secure Mobile Applications for Android", ISEC PARTNERS, pp.4-26, 2008.
9 William Enck, Damien Octeau, Patrick McDaniel, and Swarat Chaudhuri, "A Study of Android Application Security", USENIX Security Symposium, pp.2-28, 2011.