BenchPress: Analyzing Android App Vulnerability Benchmark Suites
In recent years, various benchmark suites have been developed to evaluate the efficacy of Android security analysis tools. The choice of such benchmark suites used in tool evaluations is often based on the availability and popularity of suites and not on their characteristics and relevance. One of the reasons for such choices is the lack of information about the characteristics and relevance of benchmark suites.
In this context, we empirically evaluated four Android-specific benchmark suites: DroidBench, Ghera, IccBench, and UBCBench. For each benchmark suite, we identified the APIs used by the suite that were discussed on Stack Overflow in the context of Android app development and measured the usage of these APIs in a sample of 227K real-world apps (coverage). We also identified security-related APIs used in real-world apps but not in any of the above benchmark suites to assess the opportunities to extend benchmark suites (gaps).
Mon 11 NovDisplayed time zone: Tijuana, Baja California change
11:00 - 12:30
|Enforcing Green Code With Android Lint|
Olivier Le Goaër LIUPPA, Université de Pau et des Pays de l'AdourLink to publication Media Attached
|BenchPress: Analyzing Android App Vulnerability Benchmark Suites|
Joydeep Mitra Kansas State University, Venkatesh-Prasad Ranganath Kansas State University, Aditya NarkarPre-print Media Attached
|Android App Merging for Benchmark Speed-Up and Analysis Lift-Up|
Felix Pauck Paderborn University, Germany, Shikun Zhang