Litcius/Paper detail

Penetration Frameworks and Development Issues in Secure Mobile Application Development: A Systematic Literature Review

Ikram Ul Haq, Tamim Ahmed Khan

2021IEEE Access22 citationsDOIOpen Access PDF

Abstract

The invention of smartphones has opened a new market for mobile application development. Amateur android app developers often do not possess knowledge of the latest android vulnerabilities and thus create applications with attack surface that hackers exploit. In this literature review, many available frameworks and techniques have been analyzed using ISO/IEC 25010 software quality model and identified challenges that android developers face in designing a secure application for android. This paper also presents a comprehensive survey of different penetration tools, evaluated by using criteria such as code analysis, code review, vulnerability analysis, vulnerability exploit, payload and whether these can be used in vulnerability modeling during the design phase. Our study effectively identifies the issues and gaps which can further help develop a framework/tool for designing a penetration secure mobile application by embedding all the vulnerabilities during the design phase using an android vulnerability repository.

Topics & Concepts

Android (operating system)ExploitComputer scienceAttack surfaceVulnerability managementComputer securityApplication securityVulnerability assessmentHackerMobile deviceSoftwareSoftware security assuranceWorld Wide WebInformation securityOperating systemPsychologyPsychological resilienceSecurity servicePsychotherapistAdvanced Malware Detection TechniquesSoftware Testing and Debugging TechniquesWeb Application Security Vulnerabilities
Penetration Frameworks and Development Issues in Secure Mobile Application Development: A Systematic Literature Review | Litcius