Timothy Huo, Ana Catarina Araújo, Jake Imanaka, Anthony Peruma, Rick Kazman
{"title":"移动应用程序安全趋势和主题:对 Stack Overflow 问题的研究","authors":"Timothy Huo, Ana Catarina Araújo, Jake Imanaka, Anthony Peruma, Rick Kazman","doi":"arxiv-2409.07926","DOIUrl":null,"url":null,"abstract":"The widespread use of smartphones and tablets has made society heavily\nreliant on mobile applications (apps) for accessing various resources and\nservices. These apps often handle sensitive personal, financial, and health\ndata, making app security a critical concern for developers. While there is\nextensive research on software security topics like malware and\nvulnerabilities, less is known about the practical security challenges mobile\napp developers face and the guidance they seek. \\rev{In this study, we mine\nStack Overflow for questions on mobile app security, which we analyze using\nquantitative and qualitative techniques.} The findings reveal that Stack\nOverflow is a major resource for developers seeking help with mobile app\nsecurity, especially for Android apps, and identifies seven main categories of\nsecurity questions: Secured Communications, Database, App Distribution Service,\nEncryption, Permissions, File-Specific, and General Security. Insights from\nthis research can inform the development of tools, techniques, and resources by\nthe research and vendor community to better support developers in securing\ntheir mobile apps.","PeriodicalId":501278,"journal":{"name":"arXiv - CS - Software Engineering","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2024-09-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Mobile App Security Trends and Topics: An Examination of Questions From Stack Overflow\",\"authors\":\"Timothy Huo, Ana Catarina Araújo, Jake Imanaka, Anthony Peruma, Rick Kazman\",\"doi\":\"arxiv-2409.07926\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The widespread use of smartphones and tablets has made society heavily\\nreliant on mobile applications (apps) for accessing various resources and\\nservices. These apps often handle sensitive personal, financial, and health\\ndata, making app security a critical concern for developers. While there is\\nextensive research on software security topics like malware and\\nvulnerabilities, less is known about the practical security challenges mobile\\napp developers face and the guidance they seek. \\\\rev{In this study, we mine\\nStack Overflow for questions on mobile app security, which we analyze using\\nquantitative and qualitative techniques.} The findings reveal that Stack\\nOverflow is a major resource for developers seeking help with mobile app\\nsecurity, especially for Android apps, and identifies seven main categories of\\nsecurity questions: Secured Communications, Database, App Distribution Service,\\nEncryption, Permissions, File-Specific, and General Security. Insights from\\nthis research can inform the development of tools, techniques, and resources by\\nthe research and vendor community to better support developers in securing\\ntheir mobile apps.\",\"PeriodicalId\":501278,\"journal\":{\"name\":\"arXiv - CS - Software Engineering\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-09-12\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"arXiv - CS - Software Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/arxiv-2409.07926\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"arXiv - CS - Software Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/arxiv-2409.07926","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Mobile App Security Trends and Topics: An Examination of Questions From Stack Overflow
The widespread use of smartphones and tablets has made society heavily
reliant on mobile applications (apps) for accessing various resources and
services. These apps often handle sensitive personal, financial, and health
data, making app security a critical concern for developers. While there is
extensive research on software security topics like malware and
vulnerabilities, less is known about the practical security challenges mobile
app developers face and the guidance they seek. \rev{In this study, we mine
Stack Overflow for questions on mobile app security, which we analyze using
quantitative and qualitative techniques.} The findings reveal that Stack
Overflow is a major resource for developers seeking help with mobile app
security, especially for Android apps, and identifies seven main categories of
security questions: Secured Communications, Database, App Distribution Service,
Encryption, Permissions, File-Specific, and General Security. Insights from
this research can inform the development of tools, techniques, and resources by
the research and vendor community to better support developers in securing
their mobile apps.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
