PUMA: programmable UI-automation for large-scale dynamic analysis of mobile apps

@article{Hao2014PUMAPU,
  title={PUMA: programmable UI-automation for large-scale dynamic analysis of mobile apps},
  author={Shuai Hao and Bin Liu and Suman Nath and William G. J. Halfond and Ramesh Govindan},
  journal={Proceedings of the 12th annual international conference on Mobile systems, applications, and services},
  year={2014}
}
  • Shuai Hao, B. Liu, +2 authors R. Govindan
  • Published 2014
  • Computer Science
  • Proceedings of the 12th annual international conference on Mobile systems, applications, and services
Mobile app ecosystems have experienced tremendous growth in the last six years. [...] Key Method It contains a generic UI automation capability (often called a Monkey) that exposes high-level events for which users can define handlers. These handlers can flexibly direct the Monkey's exploration, and also specify app instrumentation for collecting dynamic state information or for triggering changes in the environment during app execution.Expand
Paladin: Automated Generation of Reproducible Test Cases for Android Apps
TLDR
Paladin is a novel system that generates reproducible test cases for Android apps that leverages the structure of the GUI view tree to identify equivalent app states, since the structure can tolerate the changes on the UI contents for an app behavior performed in different test executions. Expand
AMOGA: A Static-Dynamic Model Generation Strategy for Mobile Apps Testing
TLDR
AMOGA is proposed, a strategy that uses a hybrid, static-dynamic approach for generating a user interface model from mobile apps for model-based testing by generating comprehensive models to improve the coverage of the applications. Expand
REAPER: Real-time App Analysis for Augmenting the Android Permission System
TLDR
Overall, Reaper enhances the functionality of Android's run time permission model without requiring OS or app modifications, and provides the necessary contextual information that can enable users to selectively deny permissions that are not part of an app's core functionality. Expand
Goal-Driven Exploration for Android Applications
  • Duling Lai, J. Rubin
  • Computer Science
  • 2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE)
  • 2019
TLDR
GoalExplorer automatically generates an executable test script that directly triggers the functionality of interest in an application, e.g., an Android activity, API call, or a program statement, and is able to trigger a target functionality much faster than existing application exploration techniques. Expand
Reproducible Interference-Aware Mobile Testing
TLDR
JazzDroid improves mobile testing by discovering 6x more problems, including crashes, functional bugs, UI consistency issues and common bug patterns that fail numerous apps. Expand
APPx: an automated app acceleration framework for low latency mobile app
TLDR
This framework takes Android app binary as input, performs program analysis to identify resource dependencies, and outputs an acceleration proxy that performs dynamic prefetching that reduces the median user-perceived latency by up to 64%. Expand
Goal-driven Exploration for Android Applications
This thesis proposes a solution for automated goal-driven exploration of Android applications – a scenario in which a user, e.g., security auditor, needs to dynamically trigger the functionality ofExpand
Dynaldroid: A system for automated dynamic analysis of Android applications
TLDR
Dynanlroid, a dynamic analysis tool for detecting a set of malicious actions performed by Android applications, is developed based on information collected during dynamic analysis of malware samples which indicate the occurrence of malicious activity. Expand
Improvements of and Extensions to FSMWeb: Testing Mobile Apps
TLDR
This dissertation extends the FSMWeb approach for testing web applications to test mobile applications (FSMApp) and provides an approach for selective black-box model-based fail-safe regression testing for web applications. Expand
Automated Test Generation for Detection of Leaks in Android Applications
Android devices have limited hardware resources (e.g., memory). Excessive consumption of such resources may lead to crashes, poor responsiveness, battery drain, and negative user experience. WeExpand
...
1
2
3
4
5
...

References

SHOWING 1-10 OF 32 REFERENCES
SIF: a selective instrumentation framework for mobile applications
TLDR
A selective instrumentation capability that allows users to express instrumentation specifications at a high level of abstraction; these specifications are then used to automatically insert instrumentation into binaries and can accelerate studies of the mobile app ecosystem. Expand
AppInsight: Mobile App Performance Monitoring in the Wild
TLDR
AppInsight is a system that instruments mobile-app binaries to automatically identify the critical path in user transactions, across asynchronous-call boundaries, and is lightweight, it does not require any input from the developer, and it doesn't require any changes to the OS. Expand
Targeted and depth-first exploration for systematic testing of android apps
TLDR
The key insight of the approach is to use a static, taint-style, dataflow analysis on the app bytecode in a novel way, to construct a high-level control flow graph that captures legal transitions among activities (app screens). Expand
Dynodroid: an input generation system for Android apps
TLDR
Dynodroid views an app as an event-driven program that interacts with its environment by means of a sequence of events through the Android framework, and monitors the reaction of an app upon each event in a lightweight manner, using it to guide the generation of the next event to the app. Expand
Contextual Fuzzing: Automated Mobile App Testing Under Dynamic Device and Environment Conditions
TLDR
Context Virtualizer (ConVirt), a cloud-based testing service that provides a large set of realistic mobile contextual parameters to developers with emulators and enables scalable mobile context exploration with app similarity networks, is proposed. Expand
Automatic and scalable fault detection for mobile applications
TLDR
VanarSena adopts a ``greybox'' testing method, instrumenting the app binary to achieve both coverage and speed, and uses a ``hit testing'' method to quickly emulate an app by identifying which user interface controls map to the same execution handlers in the code. Expand
PScout: analyzing the Android permission specification
TLDR
An analysis of the permission system of the Android smartphone OS is performed and it is found that a trade-off exists between enabling least-privilege security with fine-grained permissions and maintaining stability of the permissions specification as the Android OS evolves. Expand
AppProfiler: a flexible method of exposing privacy-related behavior in android applications to end users
TLDR
A knowledge base of mappings between API calls and fine-grained privacy-related behaviors is created and high-level behavior profiles of application behavior are produced to analyze users' opinions about how applications affect their privacy. Expand
AdRob: examining the landscape and impact of android application plagiarism
TLDR
This is the first large scale study on the characteristics of cloned mobile applications and their impact on the original developers, and a lower bound on the advertising revenue that cloned applications siphon from the originalDevelopers is estimated. Expand
Dr. Android and Mr. Hide: fine-grained permissions in android applications
TLDR
A suite of tools that allow fine-grained permissions to be inferred on existing apps; to be enforced by developers on their own apps; and to be retrofitted by users to increase security of existing apps without affecting functionality are developed. Expand
...
1
2
3
4
...