Abstract: Mobile device security has become increasingly important in mobile computing. Since the mobile devices and applications are growing rapidly, the security threats are intensified due to mobile app flaws and lack of security consideration in early stages of software development. The unsecure software development process creates a serious weak path that causes potential malicious attacks in mobile devices. To mitigate the mobile threats, it is essential for application developers to follow secure code development processes to alleviate data leakage or access control vulnerabilities. Secure Mobile Software Development needs to be emphasized and adopted for reducing security vulnerabilities. In this paper we present a development tool of secure code analysis for mobile application development. The tool is designed to find the security leakage of static code and implementation of plugins such as Droid Patrol. The proposed code analysis and design procedure in the early stage of application development can eliminate the weak security path in coding. Our experience of running the plugin in classrooms are discussed and student feedback are provided.
Download this article: ISEDJ - V19 N2 Page 25.pdf
Recommended Citation: Shahriar, H., Zhang, C., Valero, M., Sneha, S., Riad, A., Islam, M., Ahamed, S., (2021). Plugin-based Tool for Secure Mobile Application Development. Information Systems Education Journal19(2) pp 25-34. http://ISEDJ.org/2021-2/ ISSN : ISSN: 1545-679X. A preliminary version appears in The Proceedings of EDSIGCON 2020