基于污染变量关系图的Android应用污点分析工具

污点分析技术是检测Android智能手机隐私数据泄露的有效方法,目前主流的Android应用污点分析工具主要关注分析的精度,常常忽略运行效率的提升.在分析一些复杂应用时,过大的开销可能造成超时或程序崩溃等问题,影响工具的广泛使用.为了减少分析时间、提高效率,提出一种基于污染变量关系图的污点分析方法.该方法定义了污染变量...

Taint Analysis Tool of Android Applications Based on Tainted Value Graph

The taint analysis technology is an effective method to detect the privacy data leakage of Android smart phones. However, the state-of-the-art tools of taint analysis for Android applications mainly focus on the accuracy with few of them addressing the importance of the efficiency and time cost. Actually, the high cost may cause problems such as timeouts or program crashes when the tools analyze some complex applications, which block them from wide usage. This paper proposes a novel taint analysis approach based on the tainted value graph, which reduces the time cost and improves the efficiency. We formalize the tainted value graph to describe the tainted values and their relationships and combine the taint analysis and alias analysis together without using the traditional data flow analysis framework. In addition, we verify the taint flows on the control flow graph to improve accuracy. This paper also describes the architecture, modules and algorithmic details of our tool FastDroid. We evaluated the tool on three test suites:DroidBench-2.0, MalGenome and 1517 apps randomly downloaded from Google Play. The experimental results show that, compared with the tool FlowDroid, FastDroid has a higher precision of 93.3% and a higher recall of 85.8% on DroidBench-2.0, and the time cost for analysis is less and more stable on all the test suites.