摘要
创新点
对于 Android 应用的动态测试来说, 常常需要借助于 GUI 遍历工具进行 GUI 事件的自动化输入, 模拟用户的行为。 然而现有的大多数 GUI 遍历工具仅仅追求高代码覆盖率, 而不追求以最快捷有效的方式触发 Android 应用的特定行为, 那么如果测试者只关心 Android 应用的特定行为是否被触发的话, 这势必导致时间和资源的浪费。 因此, 本文以定向触发 Android 应用的特定行为为目标, 提出了基于组件过滤和控件过滤的 Android 应用定向行为触发方法。 以目标 API 调用近似代表目标程序行为, 通过静态分析的方法找到抵达目标 API 调用所需要遍历的有效的 Android 组件和控件, 并在动态遍历的过程中, 只对有效的组件和控件进行遍历, 而不对无效的组件和控件进行遍历, 这样便极大的节省了 GUI 遍历的时间, 更加高效的触发 Android 应用的特定行为。
References
Amalfitano D, Fasolino A R, Tramontana P, et al. Using GUI ripping for automated testing of Android applications. In: Proceedings of the 27th IEEE/ACM International Conference on Automated Software Engineering, Essen, 2012. 258–261
Machiry A, Tahiliani R, Naik M. Dynodroid: an input generation system for android apps. In: Proceedings of the 9th Joint Meeting on Foundations of Software Engineering, Saint Petersburg, 2013. 224–234
Bhoraskar R, Han S, Jeon J, et al. Brahmastra: Driving apps to test the security of third-party components. In: Proceedings of the 23rd USENIX Conference on Security, San Diego, 2014. 1021–1036
Zheng C, Zhu S, Dai S, et al. Smartdroid: an automatic system for revealing ui-based trigger conditions in android applications. In: Proceedings of the 2nd ACM Workshop on Security and Privacy in Smartphones and Mobile Devices, Raleigh, 2012. 93–104
Wong M Y, Lie D. IntelliDroid: a targeted input generator for the dynamic analysis of Android malware. In: Proceedings of the 23rd Network and Distributed System Security Symposium, San Diego, 2016
Azim T, Neamtiu I. Targeted and depth-first exploration for systematic testing of android apps. ACM SIGPLAN Notices, 2013, 48: 641–660
Author information
Authors and Affiliations
Corresponding author
Additional information
The authors declare that they have no conflict of interest.
Electronic supplementary material
Rights and permissions
About this article
Cite this article
Yue, H., Zhang, Y., Wang, W. et al. Driving Android apps to trigger target API invocations based on activity and GUI filtering. Sci. China Inf. Sci. 60, 078102 (2017). https://doi.org/10.1007/s11432-015-0825-3
Received:
Accepted:
Published:
DOI: https://doi.org/10.1007/s11432-015-0825-3