Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Cheetah: Just-in-time taint analysis for android apps

: Do, L.N.Q.; Ali, K.; Livshits, B.; Bodden, E.; Smith, J.; Murphy-Hill, E.


Institute of Electrical and Electronics Engineers -IEEE-; IEEE Computer Society; Association for Computing Machinery -ACM-:
IEEE/ACM 39th International Conference on Software Engineering Companion, ICSE-C 2017 : 20-28 May 2017, Buenos Aires, Argentina; Proceedings
Piscataway, NJ: IEEE, 2017
ISBN: 978-1-5386-1589-8
ISBN: 978-1-5386-1590-4
International Conference on Software Engineering (ICSE) <39, 2017, Buenos Aires>
Conference Paper
Fraunhofer IEM ()

Current static-analysis tools are often long-running, which causes them to be sidelined into nightly build checks. As a result, developers rarely use such tools to detect bugs when writing code, because they disrupt their workflow. In this paper, we present Cheetah, a static taint analysis tool for Android apps that interleaves bug fixing and code development in the Eclipse integrated development environment. Cheetah is based on the novel concept of Just-in-Time static analysis that discovers and reports the most relevant results to the developer fast, and computes the more complex results incrementally later. Unlike traditional batch-style static-analysis tools, Cheetah causes minimal disruption to the developer's workflow. This video demo showcases the main features of Cheetah: