ISEDJ

Information Systems Education Journal

Volume19

V19 N2 Pages 25-34

Apr 2021


Plugin-based Tool for Secure Mobile Application Development


Hossain Shahriar
Kennesaw State University
Marietta, GA USA

Chi Zhang
Kennesaw State University
Marietta, GA USA

Maria Valero
Kennesaw State University
Marietta, GA USA

Sweta Sneha
Kennesaw State University
Marietta, GA USA

A B M Kamrul Islam Riad
Kennesaw State University
Marietta, GA USA

Md Saiful Islam
Kennesaw State University
Marietta, GA USA

Sheikh Ahamed
Marquette University
Milwaukee, WI USA

Abstract: Mobile device security has become increasingly important in mobile computing. Since the mobile devices and applications are growing rapidly, the security threats are intensified due to mobile app flaws and lack of security consideration in early stages of software development. The unsecure software development process creates a serious weak path that causes potential malicious attacks in mobile devices. To mitigate the mobile threats, it is essential for application developers to follow secure code development processes to alleviate data leakage or access control vulnerabilities. Secure Mobile Software Development needs to be emphasized and adopted for reducing security vulnerabilities. In this paper we present a development tool of secure code analysis for mobile application development. The tool is designed to find the security leakage of static code and implementation of plugins such as Droid Patrol. The proposed code analysis and design procedure in the early stage of application development can eliminate the weak security path in coding. Our experience of running the plugin in classrooms are discussed and student feedback are provided.

Download this article: ISEDJ - V19 N2 Page 25.pdf


Recommended Citation: Shahriar, H., Zhang, C., Valero, M., Sneha, S., Riad, A., Islam, M., Ahamed, S., (2021). Plugin-based Tool for Secure Mobile Application Development. Information Systems Education Journal19(2) pp 25-34. http://ISEDJ.org/2021-2/ ISSN : ISSN: 1545-679X. A preliminary version appears in The Proceedings of EDSIGCON 2020