期刊名称:International Journal of Security and Its Applications
印刷版ISSN:1738-9976
出版年度:2012
卷号:6
期号:4
出版社:SERSC
摘要:The dissemination and use of mobile applications have been rapidly expanding these days. And in such a situation, the security of mobile applications has emerged as a new issue. Especially, the software including mobile applications will always exist the possibility of malicious attacks by hackers, because it exchanging data in the internet environment. These security weaknesses are the direct cause of software breaches causing serious economic loss. In recent years, the awareness that developing secure software is intrinsically the most effective way to eliminate the software vulnerability than strengthening the security system for the external environment has increased. Therefore, Methodology to eliminate the vulnerability using secure coding rules and checking tools is getting attention to prevent software breaches in the coding stage. However, the existing coding rules do not reflects the characteristics of the mobile environments and the applications. In this paper, we will define the secure coding rules that reflect the characteristics of the mobile environments and applications by the analysis of the existing secure coding rules. And, we will design and implement the compiler to inspect vulnerabilities of the mobile applications using defined secure coding rules in the coding stage.
