Secure Information Technology Center – Austria

Static analysis of selected Android applications

In this project, it has been analyzed on how a set of selected applications is capable of overcoming real-world threats. Based on current attack vectors, we have derived concrete inspection criteria and applied them on our dataset. As a result, it was feasible to uncover deficiencies in 8 of 10 analyzed applications. The found issues significantly undermine the achievable security level and can lead to the exposure of secrets and the leak of sensitive data to unrelated parties.

At the present time, a publication of particular deficiencies in the investigated applications is not considered.

Downloads

Title Version Date
Analysis report 1.0 2015-07-21

Posted 17.08.2015, Kategorie: IT-Security.