ICTDroid: Parameter-Aware Combinatorial Testing for Components of Android Apps
Components are the fundamental building blocks of Android applications. Different functional modules represented by components often rely on inter-component communication mechanisms to achieve cross-module data transfer and method invocation. It is necessary to conduct robustness testing on components to prevent component launching crashes and privacy leaks caused by unexpected input parameters. However, as the complexity of the input parameter structure and the diversity of possible inputs, developers may overlook specific inputs that result in exceptions. At the same time, the vast input space also brings challenges to efficient component testing. In this paper, we designed an automated testing tool for Android application components named \textit{\textbf{ICTDroid}}, which combines static parameter extraction and adaptive-strength combinatorial testing generation to detect bugs with a compact test suite. Experiments have shown that the tool triggers 205 unique exceptions in 30 open-source applications with 1,919 test cases in 83 minutes, where the developers have confirmed three of six issues we reported. The tool and demostration video of \textit{ICTDroid} is available at https://lightningrs.github.io/tools/ICTDroid.html.
| Slide (ICTDroid-Presentation.pptx) | 6.61MiB |
Thu 14 SepDisplayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change
10:30 - 12:00 | Mobile Development 1Research Papers / Tool Demonstrations / Journal-first Papers at Room D Chair(s): Jordan Samhi CISPA Helmholtz Center for Information Security | ||
10:30 12mTalk | Taming Android Fragmentation through Lightweight Crowdsourced Testing Journal-first Papers Xiaoyu Sun Australian National University, Australia, Xiao Chen Monash University, Yonghui Liu Monash University, John Grundy Monash University, Li Li Beihang University Media Attached File Attached | ||
10:42 12mTalk | Enhancing Malware Detection for Android Apps: Detecting Fine-granularity Malicious Components Research Papers Zhijie Liu ShanghaiTech University, China, Liangfeng Zhang School of Information Science and Technology, ShanghaiTech University, Yutian Tang University of Glasgow File Attached | ||
10:54 12mTalk | Fine-Grained In-Context Permission Classification for Android Apps using Control-Flow Graph Embedding Research Papers Vikas K. Malviya Singapore Management University, Yan Naing Tun Singapore Management University, Chee Wei Leow Singapore Management University, Ailys Tee Xynyn Singapore Management University, Lwin Khin Shar Singapore Management University, Lingxiao Jiang Singapore Management University File Attached | ||
11:06 12mTalk | How Android Apps Break the Data Minimization Principle: An Empirical Study Research Papers Shaokun Zhang Peking University, Hanwen Lei Peking University, Yuanpeng Wang Peking University, Ding Li Peking University, Yao Guo Peking University, Xiangqun Chen Peking University Pre-print File Attached | ||
11:18 12mTalk | ICTDroid: Parameter-Aware Combinatorial Testing for Components of Android Apps Tool Demonstrations Shixin Zhang Institute of Software, Chinese Academy of Sciences, Shanna Li Beijing Jiaotong University, Xi Deng Institute of Software, Chinese Academy of Sciences, Jiwei Yan Institute of Software at Chinese Academy of Sciences, China, Jun Yan Institute of Software at Chinese Academy of Sciences; University of Chinese Academy of Sciences Media Attached File Attached | ||
11:30 12mTalk | DeepScaler: Holistic Autoscaling for Microservices Based on Spatiotemporal GNN with Adaptive Graph Learning Research Papers Chunyang Meng Sun Yat-sen University, Shijie Song Sun Yat-sen University, Haogang Tong Sun Yat-sen University, Maolin Pan Sun Yat-sen University, Yang Yu Sun Yat-sen University Pre-print File Attached | ||