Fraunhofer-Gesellschaft

Publica

Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Towards cross-platform cross-language analysis with soot

 
: Arzt, S.; Kussmaul, T.; Bodden, E.

:

Association for Computing Machinery -ACM-; Association for Computing Machinery -ACM-, Special Interest Group on Software Engineering -SIGSOFT-; Association for Computing Machinery -ACM-, Special Interest Group on Programming Languages -SIGPLAN-:
SOAP 2016, 5th ACM SIGPLAN International Workshop on State Of the Art in Program Analysis. Proceedings : Santa Barbara, CA, USA, June 14, 2016
New York: ACM, 2016
ISBN: 978-1-4503-4385-5
pp.1-6
International Workshop on State Of the Art in Program Analysis (SOAP) <5, 2016, Santa Barbara/Calif.>
English
Conference Paper
Fraunhofer SIT ()

Abstract
To assess the security and quality of the growing number of programs on desktop computers, mobile devices, and servers, companies often rely on static analysis techniques. While static analysis has been applied successfully to various problems, the academic literature has largely focused on a subset of programming languages and frameworks, and often only on a single language at a time. Many tools have been created for Java and Android. In this paper, we present a first step toward re-using the existing Soot framework and its analyses for other platforms. We implement a front end for converting the CIL assembly code of the.net Framework into Soot's Jimple code and show that this is possible without modifying Jimple nor overly losing semantic information. The front end integrates Java/Android with CIL analysis and scales to large programs. A case study demonstrates the detection of real-world malware that uses CIL code inside an Android app to hide its behavior.

: http://publica.fraunhofer.de/documents/N-422287.html