Methods and apparatuses for improved mobile app security testing via bridged native and web user interface interaction
First Claim
1. A method for improved app security testing using a security instrumentation system, the method comprising:
- receiving, by the security instrumentation system, a native app for analysis;
discovering, by the security instrumentation system, one or more user interface elements provided by the native app;
interrogating, by the security instrumentation system, the one or more user interface elements provided by the native app;
serializing, by the security instrumentation system, the one or more user interface elements of the native app, wherein serializing the one or more user interface elements of the native app comprises provisioning the one or more user interface elements of the native app and generating, using the provisioned one or more user interface elements of the native app, web version interface elements of the native app'"'"'s one or more user interface elements for rendering in a web browser;
causing presentation of the serialized web version interface elements of the native app'"'"'s one or more user interface elements on the web browser;
recording, by the security instrumentation system, a user interaction with the web version interface elements in the web browser; and
causing injection of the user interaction with the web version interface elements into the native app.
3 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatuses disclosed herein for improved mobile app security testing via bridged native and web user interface interaction. In one example embodiment, a method is provided comprising receiving, by a security instrumentation system, an app for analysis, and discovering, by the security instrumentation system, one or more user interface elements provided by the app. Thereafter, interrogating, by the security instrumentation system, the one or more user interface elements provided by the app and serializing, by the security instrumentation system, the one or more user interface elements. In some embodiments, after serializing the one or more user interface elements, causing presentation of the serialized one or more interface elements via a web browser.
-
Citations
17 Claims
-
1. A method for improved app security testing using a security instrumentation system, the method comprising:
-
receiving, by the security instrumentation system, a native app for analysis; discovering, by the security instrumentation system, one or more user interface elements provided by the native app; interrogating, by the security instrumentation system, the one or more user interface elements provided by the native app; serializing, by the security instrumentation system, the one or more user interface elements of the native app, wherein serializing the one or more user interface elements of the native app comprises provisioning the one or more user interface elements of the native app and generating, using the provisioned one or more user interface elements of the native app, web version interface elements of the native app'"'"'s one or more user interface elements for rendering in a web browser; causing presentation of the serialized web version interface elements of the native app'"'"'s one or more user interface elements on the web browser; recording, by the security instrumentation system, a user interaction with the web version interface elements in the web browser; and causing injection of the user interaction with the web version interface elements into the native app. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An apparatus comprising at least one processor and at least one memory including computer program instructions, the at least one memory and the computer program instructions configured to, with the at least one processor, cause the apparatus at least to:
-
receive, by a security instrumentation system, a native app for analysis; discover, by the security instrumentation system, one or more user interface elements provided by the native app; interrogate, by the security instrumentation system, the one or more user interface elements provided by the native app; serialize, by the security instrumentation system, the one or more user interface elements of the native app, wherein serializing the one or more user interface elements of the native app comprises provisioning the one or more user interface elements of the native app and generating, using the provisioned one or more user interface elements of the native app, web version interface elements of the native app'"'"'s one or more user interface elements for rendering in a web browser; cause presentation of the serialized web version interface elements of the native app'"'"'s one or more user interface elements on the web browser; record, by the security instrumentation system, a user interaction with the web version interface elements in the web browser; and cause injection of the user interaction with the web version interface elements into the native app. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A computer program product comprising at least one non-transitory computer-readable storage medium bearing computer program instructions embodied therein for use with a computer, the computer program instructions comprising program instructions configured to cause the computer to:
-
receive, by a security instrumentation system, a native app for analysis; discover, by the security instrumentation system, one or more user interface elements provided by the native app; interrogate, by the security instrumentation system, the one or more user interface elements provided by the native app; serialize, by the security instrumentation system, the one or more user interface elements of the native app, wherein serializing the one or more user interface elements of the native app comprises provisioning the one or more user interface elements of the native app and generating, using the provisioned one or more user interface elements of the native app, web version interface elements of the native app'"'"'s one or more user interface elements for rendering in a web browser; cause presentation of the serialized web version interface elements of the native app'"'"'s one or more user interface elements on the web browser; record, by the security instrumentation system, a user interaction with the web version interface elements in the web browser; and cause injection of the user interaction with the web version interface elements into the native app. - View Dependent Claims (14, 15, 16, 17)
-
Specification