FlowDroid
#Application Protection#Application Security
A cloud-based web application firewall that provides protection against web attacks, DDoS mitigation, and performance optimization through CDN capabilities.
FlowDroid: A Comprehensive Static Taint Analysis Tool for Android Applications
FlowDroid is a context-, flow-, field-, object-sensitive, and lifecycle-aware static taint analysis tool designed specifically for Android applications. In contrast to many other static-analysis methods for Android, FlowDroid focuses on achieving very high recall and precision in its analyses. To reach this objective, two primary challenges were tackled: enhancing precision by developing an analysis that is context-, flow-, field-, and object-sensitive, and improving recall by constructing a complete model of Android’s app lifecycle.
The analysis is based on Soot and Heros with a focus on sensitivity
The analysis is based on Soot and Heros, which employs a precise callgraph to achieve flow- and context-sensitivity. It also uses IFDS-based flow functions to ensure field- and object-sensitivity. An accurate and efficient alias search is essential for maintaining context-sensitivity alongside field-sensitivity.
