Datacentric Semantics for Verification of Privacy Policy Compliance by Mobile Applications

@inproceedings{Cortesi2015DatacentricSF,
  title={Datacentric Semantics for Verification of Privacy Policy Compliance by Mobile Applications},
  author={Agostino Cortesi and Pietro Ferrara and Marco Pistoia and Omer Tripp},
  booktitle={VMCAI},
  year={2015}
}
We introduce an enhanced information-flow analysis for tracking the amount of confidential data that is possibly released to third parties by a mobile application. The main novelty of our solution is that it can explicitly keep track of the footprint of data sources in the expressions formed and manipulated by the program, as well as of transformations over them, yielding a lazy approach with finer granularity, which may reduce false positives with respect to state-of-the-art information-flow… CONTINUE READING

From This Paper

Figures, tables, and topics from this paper.

Similar Papers

Loading similar papers…