• Publications
  • Influence
IccTA: Detecting Inter-Component Privacy Leaks in Android Apps
TLDR
IccTA, a static taint analyzer to detect privacy leaks among components in Android applications goes beyond state-of-the-art approaches by supporting inter- component detection and propagating context information among components, which improves the precision of the analysis. Expand
AndroZoo: Collecting Millions of Android Apps for the Research Community
TLDR
This work presents a growing collection of Android Applications collected from several sources, including the official GooglePlay app market, which contains more than three million apps that have been analysed by tens of different AntiVirus products to know which applications are detected as Malware. Expand
ApkCombiner: Combining Multiple Android Apps to Support Inter-App Analysis
TLDR
A tool called ApkCombiner is presented which aims at reducing an inter-app communication problem to an intra-app inter-component communication problem and has been evaluated on a dataset of 3,000 real-world Android apps to demonstrate its capability to support static context-aware inter- app analysis scenarios. Expand
DroidRA: taming reflection to support whole-program analysis of Android apps
TLDR
The DroidRA instrumentation-based approach to address the issue of reflective calls in Android apps in a non-invasive way, and allows to boost an app so that it can be immediately analyzable, including by such static analyzers that were not reflection-aware. Expand
TBar: revisiting template-based automated program repair
TLDR
It is demonstrated that TBar correctly fixes 43 bugs from Defects4J, an unprecedented performance in the literature (including all approaches, i.e., template-based, stochastic mutation-based or synthesis-based APR). Expand
An Investigation into the Use of Common Libraries in Android Apps
TLDR
A dataset of about 1.5 million apps from Google Play is used to harvest potential common libraries, including advertisement libraries, which are by far the largest set of 1,113 libraries supporting common functionality and 240 libraries for advertisement, and investigates several aspects of Android libraries,including their popularity and their proportion in Android app code. Expand
FaCoY – A Code-to-Code Search Engine
TLDR
FaCoY is proposed, a novel approach for statically finding code fragments which may be semantically similar to user input code which is more effective than online code-to-code search engines and can be useful in code/patch recommendation. Expand
CiD: automating the detection of API-related compatibility issues in Android apps
TLDR
This paper proposes an automated approach named CiD for systematically modelling the lifecycle of the Android APIs and analysing app bytecode to flag usages that can lead to potential compatibility issues, and demonstrates the usefulness of CiD by helping developers repair their apps. Expand
Bench4BL: reproducibility study on the performance of IR-based bug localization
TLDR
This study applies not only subjects used in existing studies but also 46 new subjects to the state-of-the-art IRBL techniques, and compares two different version matching strategies to highlight some observations related to performance deterioration. Expand
Empirical assessment of machine learning-based malware detectors for Android
TLDR
The purpose of malware detection is revisits to discuss whether such in the lab validation scenarios provide reliable indications on the performance of malware detectors in real-world settings, aka in the wild. Expand
...
1
2
3
4
5
...