원문정보
초록
영어
With the recent dynamic growth of the mobile market, the problem of personal information leakage through mobile applications’ weaknesses has become a newly rising problem. Guaranteeing the reliability of input and output data is particularly difficult nowadays because software exchange data across the internet. There is also a risk of being the target of an arbitrary intruder’s malicious attack. Such weaknesses have been the root to software security violations that can cause some serious financial damages. Such weaknesses are the direct causes of software security incidents, which generate critical economic losses. Therefore it is important eliminate weaknesses in the software development stage and these areas such as the secure software development process model are being studied, recently. In this study, a compiler which can examine applications’ weaknesses at the software development stage has been designed and implemented based on existing weakness research. The proposed compiler analyzes the weaknesses within a program at the point of compilation, different to the existing development environments which separate compilers and weakness analysis tools. As a result, the new compiler enables mobile applications that are developed in rapid development cycles to be created safely from the very first stages of development.
목차
1. Introduction
2. Related Studies
2.1. Secure Coding
2.2. Programming Analysis Method
2.3. Source Code Weakness Analysis Tools
3. Weakness for Mobile Applications
3.1. Weakness Classification
3.2. Method for Weakness Derivation
3.3. Derived Weakness Enumeration
4. Design of a Proposed Compiler with Secure Coding Rules
4.1. Compiler Model
4.2. Secure Coding Rules in Memory Usage
5. Experimental Results and Analysis
6. Conclusions
Acknowledgements
References