PERSONAL Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
The main service mode of communication protocol or communication business support software for upper application is API (Application Programming Interface). This paper focuses on whether the defective API is abused. Based on the method of extracting the feature set of defective communication API, and the defective communication APIs called in the APPs are analyzed and the communication security portrait of the APPs is builded. 20 typical open source communication software are selected to extract the feature set of defective APIs, and 1000 candidate APPs that may have security risks are screened to further evaluate the risks to obtain their communication security profiles. The experimental results show that the methods proposed in this paper can effectively detect the functional defects and privacy disclosure defects in communication APPs. This method not only provides a new technology for communication software security testing, but also provides a new idea for communication software security protection.
Shanling Li,Changyou Zheng, andSen Yang
"A construction method for communication APP security portrait based on flawed API", Proc. SPIE 12719, Second International Conference on Electronic Information Technology (EIT 2023), 127192N (15 August 2023); https://doi.org/10.1117/12.2685958
ACCESS THE FULL ARTICLE
INSTITUTIONAL Select your institution to access the SPIE Digital Library.
PERSONAL Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
The alert did not successfully save. Please try again later.
Shanling Li, Changyou Zheng, Sen Yang, "A construction method for communication APP security portrait based on flawed API," Proc. SPIE 12719, Second International Conference on Electronic Information Technology (EIT 2023), 127192N (15 August 2023); https://doi.org/10.1117/12.2685958