Reference : Towards Black Box Testing of Android Apps
Scientific congresses, symposiums and conference proceedings : Paper published in a book
Engineering, computing & technology : Computer science
http://hdl.handle.net/10993/23816
Towards Black Box Testing of Android Apps
English
Zhauniarovich, Yury [> >]
Philippov, Anton [> >]
Gadyatskaya, Olga mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) >]
Crispo, Bruno [> >]
Massacci, Fabio [> >]
Aug-2015
Proc. of Software Assurance Workshop at the 10th International Conference on Availability, Reliability and Security (ARES)
IEEE
Yes
International
Software Assurance Workshop at the 10th International Conference of Availability, Reliability and Security (ARES), 2015
24-08-2015 to 27-08-2015
[en] Android ; testing ; code coverage
[en] Many state-of-art mobile application testing frameworks
(e.g., Dynodroid, EvoDroid) enjoy Emma or
other code coverage libraries to measure the coverage achieved.
The underlying assumption for these frameworks is availability
of the app source code. Yet, application markets and security
researchers face the need to test third-party mobile applications
in the absence of the source code. There exists a number of
frameworks both for manual and automated test generation that
address this challenge. However, these frameworks often do not
provide any statistics on the code coverage achieved, or provide
coarse-grained ones like a number of activities or methods
covered. At the same time, given two test reports generated by
different frameworks, there is no way to understand which one
achieved better coverage if the reported metrics were different
(or no coverage results were provided). To address these issues
we designed a framework called BBOXTESTER that is able to
generate code coverage reports and produce uniform coverage
metrics in testing without the source code. Security researchers
can automatically execute applications exploiting current stateof-
art tools, and use the results of our framework to assess if
the security-critical code was covered by the tests. In this paper
we report on design and implementation of BBOXTESTER and
assess its efficiency and effectiveness.
SnT - Interdisciplinary Centre for Security, Reliability and Trust
Researchers ; Professionals
http://hdl.handle.net/10993/23816
10.1109/ARES.2015.70
501--510

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Limited access
bboxtesting.pdfAuthor preprint331.15 kBRequest a copy

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.