Toward discovering and exploiting private server-side Web API
Most of the interfaces for mobile application and server interaction use the Web API for communication,but the Web API introduced by these mobile applications may introduce new security issues.To facilitate the study of the security of Web API,a system for automatically discovering the server-side W...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
POSTS&TELECOM PRESS Co., LTD
2016-12-01
|
| Series: | 网络与信息安全学报 |
| Subjects: | |
| Online Access: | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2016.00134 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841530332256403456 |
|---|---|
| author | Jia CHEN Shan-qing1 GUO |
| author_facet | Jia CHEN Shan-qing1 GUO |
| author_sort | Jia CHEN |
| collection | DOAJ |
| description | Most of the interfaces for mobile application and server interaction use the Web API for communication,but the Web API introduced by these mobile applications may introduce new security issues.To facilitate the study of the security of Web API,a system for automatically discovering the server-side Web API interface in APK files based on the conventional Android program testing framework was designed and implemented.This system can help to develop the research on private server-side Web API interface security. |
| format | Article |
| id | doaj-art-e892b78916e04a3cb6b3cdd8baacfae4 |
| institution | Kabale University |
| issn | 2096-109X |
| language | English |
| publishDate | 2016-12-01 |
| publisher | POSTS&TELECOM PRESS Co., LTD |
| record_format | Article |
| series | 网络与信息安全学报 |
| spelling | doaj-art-e892b78916e04a3cb6b3cdd8baacfae42025-01-15T03:05:06ZengPOSTS&TELECOM PRESS Co., LTD网络与信息安全学报2096-109X2016-12-012273859549246Toward discovering and exploiting private server-side Web APIJia CHENShan-qing1 GUOMost of the interfaces for mobile application and server interaction use the Web API for communication,but the Web API introduced by these mobile applications may introduce new security issues.To facilitate the study of the security of Web API,a system for automatically discovering the server-side Web API interface in APK files based on the conventional Android program testing framework was designed and implemented.This system can help to develop the research on private server-side Web API interface security.http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2016.00134Web APIAndroid Appstatic analysisdynamic analysis |
| spellingShingle | Jia CHEN Shan-qing1 GUO Toward discovering and exploiting private server-side Web API 网络与信息安全学报 Web API Android App static analysis dynamic analysis |
| title | Toward discovering and exploiting private server-side Web API |
| title_full | Toward discovering and exploiting private server-side Web API |
| title_fullStr | Toward discovering and exploiting private server-side Web API |
| title_full_unstemmed | Toward discovering and exploiting private server-side Web API |
| title_short | Toward discovering and exploiting private server-side Web API |
| title_sort | toward discovering and exploiting private server side web api |
| topic | Web API Android App static analysis dynamic analysis |
| url | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2016.00134 |
| work_keys_str_mv | AT jiachen towarddiscoveringandexploitingprivateserversidewebapi AT shanqing1guo towarddiscoveringandexploitingprivateserversidewebapi |