Applying security assurance techniques to a mobile phone application: An initial approach

Date of this Version


Document Type

Conference Paper

Publication Details

Citation only.

Krishnan, P., Hafner, S., & Zeiser, A. (2011). Applying security techniques to a mobile phone application: An initial approach. Paper presented at 2011 IEEE Fourth International Conference on Software Testing, Verification and Validation Workshops (ICSTW), Berlin, Germany.

Access the conference website.

2011 HERDC submission. FoR code: 080309

© Copyright IEEE, 2011. All rights reserved.




As users download applications to their mobile phones, security is a critical issue. In this paper we present a process for the security assurance of applications. It uses existing vulnerability databases and application development guidelines to identify potential security issues. The identified issues are then validated using a variety of techniques including black-box testing, unit testing code inspection and static analysis. This process is illustrated using an application for the Android platform.

This document is currently not available here.



This document has been peer reviewed.