ZertApps - Certified Security of Mobile Apps

The ZertApps project (Certified Security of Mobile Applications) aims to provide a comprehensive security analysis infrastructure for Android apps. Static and supplementary dynamic analyses shall be developed to detect security vulnerabilities in Android apps supporting the specific Android framework constructs, e.g., interprocess communication. In particular, we will deal with the aspect of colluding apps, where one app allows another app to access its permissions (maybe, inadvertently). Another central aspect of the ZertApps project is to develop a lightweight certification process for the security and privacy of apps. Last but not least, usability will play an important role since the analysis results must be presented to an analyst in a comprehensible fashion.

Period: 01/01/2014 -31/12/2015
Funding Body: BMBF
Partners: OTARIS Interactive Services GmbH, datenschutz cert GmbH, SAP AG, Fraunhofer Institute for Secure Information Technology SIT, TU Darmstadt