METHODS AND APPARATUSES FOR IMPROVED APP SECURITY TESTING
First Claim
1. A method for improved app security testing, the method comprising:
- processing, by a security analysis system, an app for analysis;
analyzing the app by diagnostic circuitry of the security analysis system, wherein analyzing the app includes at least one of performing static analysis on the app or causing performance, by a lab rig, of non-emulated dynamic analysis on the app;
generating, by the security analysis system and based on analyzing the app, a set of risk issues presented by the app; and
outputting, by the security analysis system, the set of risk issues.
4 Assignments
0 Petitions
Accused Products
Abstract
Embodiments are disclosed for performing static and/or non-emulated dynamic analysis of mobile computing device software to improve app security testing. In the context of a method, an example embodiment includes processing, by a security analysis system, an app for analysis. This example embodiment of the method further includes analyzing the app by diagnostic circuitry of the security analysis system. In this regard, analyzing the app includes at least one of performing static analysis on the app or causing performance, by a lab rig, of non-emulated dynamic analysis on the app. In turn, this example embodiment further includes generating, by the security analysis system and based on analyzing the app, a set of risk issues presented by the app, and outputting, by the security analysis system, the set of risk issues. Corresponding apparatuses and computer program products are also provided.
15 Citations
20 Claims
-
1. A method for improved app security testing, the method comprising:
-
processing, by a security analysis system, an app for analysis; analyzing the app by diagnostic circuitry of the security analysis system, wherein analyzing the app includes at least one of performing static analysis on the app or causing performance, by a lab rig, of non-emulated dynamic analysis on the app; generating, by the security analysis system and based on analyzing the app, a set of risk issues presented by the app; and outputting, by the security analysis system, the set of risk issues. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. An apparatus for improved app security testing, the apparatus comprising at least one processor and at least one memory storing computer-executable instructions, that, when executed by the at least one processor, cause the apparatus to:
-
process an app for analysis; analyze the app, wherein analyzing the app includes at least one of performing static analysis on the app or causing performance, by a lab rig, of non-emulated dynamic analysis on the app; generate, based on analyzing the app, a set of risk issues presented by the app; and output the set of risk issues. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A computer program product comprising at least one non-transitory computer-readable storage medium for improved app security testing, the at least one non-transitory computer-readable storage medium storing computer-executable instructions that, when executed, cause an apparatus to:
-
process an app for analysis; analyze the app, wherein analyzing the app includes at least one of performing static analysis on the app or causing performance, by a lab rig, of dynamic analysis on the app; generate, based on analyzing the app, a set of risk issues presented by the app; and output the set of risk issues.
-
Specification