Reproducing Taint-Analysis Results with ReproDroid

More and more Android taint-analysis tools appear each year. Any paper proposing such a tool typically comes with an in-depth evaluation of its supported features, accuracy and ability to be applied on real-world apps. Although the authors spent a lot of effort to come up with these evaluations, comparability is often hindered since the description of their experimental targets is usually limited. To conduct a comparable, automatic and unbiased evaluation of different analysis tools, we propose the framework ReproDroid. The framework enables us to precisely declare our evaluation targets, in consequence we refine three well-known benchmarks: DroidBench, ICCBench and DIALDroidBench. Furthermore, we instantiate this framework for six prominent taint-analysis tools, namely Amandroid, DIALDroid, DidFail, DroidSafe, FlowDroid and IccTA. Finally, we use these instances to automatically check whether different promises commonly made in the associated proposing papers are kept.

Pauck, Felix; Bodden, Eric; Wehrheim, Heike (2020): Reproducing Taint-Analysis Results with ReproDroid. Software Engineering 2020. DOI: 10.18420/SE2020_36. Bonn: Gesellschaft für Informatik e.V.. PISSN: 1617-5468. ISBN: 978-3-88579-694-7. pp. 123. Security. Innsbruck, Austria. 24.-28. Feburar 2020

Schlagwörter

Android Taint Analysis , Tools , Benchmarks , Empirical Studies , Reproducibility

DOI

10.18420/SE2020_36

Sammlungen

P300 - Software Engineering 2020

Komplettanzeige

Reproducing Taint-Analysis Results with ReproDroid

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen