FlowDroid

Today's smartphones are a ubiquitous source of private and confidential data. At the same time, smartphone users are plagued by carelessly programmed apps that leak important data by accident, and by malicious apps that exploit their given privileges to copy such data intentionally. While existing static taint-analysis approaches have the potential of detecting such data leaks ahead of time, all approaches for Android use a number of coarse-grain approximations that can yield high numbers of missed leaks and false alarms. In this work we thus present FlowDroid, a novel and highly precise static taint analysis for Android applications. A precise model of Android's lifecycle allows the analysis to properly…

• G
  Google
• DF
  Deutsche Forschungsgemeinschaft
• BF
  Bundesministerium für Bildung und Forschung
• DO
  Division of Computer and Network Systems

  Award: CNS-1228700, CNS-0905447, CNS-1064944, CNS-0643907