Software Testing Verification and Validation Workshop, IEEE International Conference on (2011)
Mar. 21, 2011 to Mar. 25, 2011
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICSTW.2011.10
As users download applications to their mobile phones, security is a critical issue. In this paper we present a process for the security assurance of applications. It uses existing vulnerability databases and application development guidelines to identify potential security issues. The identified issues are then validated using a variety of techniques including black-box testing, unit testing code inspection and static analysis. This process is illustrated using an application for the Android platform.
Android, Assurance, Security, QA process
A. Zeiser, S. Hafner and P. Krishnan, "Applying Security Assurance Techniques to a Mobile Phone Application: An Initial Approach," Software Testing Verification and Validation Workshop, IEEE International Conference on(ICSTW), Berlin, Germany, 2011, pp. 545-552.