TY - GEN
T1 - Developer mistakes in writing android manifests
T2 - 14th IEEE/ACM International Conference on Mining Software Repositories, MSR 2017
AU - Jha, Ajay Kumar
AU - Lee, Sunghee
AU - Lee, Woo Jin
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2017/6/29
Y1 - 2017/6/29
N2 - Each Android app must have an Android manifest file. It is one of the most important configuration files manually written by developers. In addition to various configuration parameters required to run an app, it also contains configuration parameters which are used to implement security, compatibility, and accessibility of an app. Any mistakes in writing the manifest file can cause serious implications in terms of security, reliability, and availability of an app. In this paper, we study and report different types of mistakes committed by developers in writing Android manifest files. The study was performed on 13,483 real-world Android apps. We also present an open source rule-based static analysis tool which detects developer mistakes in the manifest file. The tool generates a warning message if it detects any misconfigurations in the manifest file. We used the tool to perform the empirical study and it generated total 59,547 configuration errors in 11,110 apps. Only 2,373 apps, among studied apps, do not have any configuration errors.
AB - Each Android app must have an Android manifest file. It is one of the most important configuration files manually written by developers. In addition to various configuration parameters required to run an app, it also contains configuration parameters which are used to implement security, compatibility, and accessibility of an app. Any mistakes in writing the manifest file can cause serious implications in terms of security, reliability, and availability of an app. In this paper, we study and report different types of mistakes committed by developers in writing Android manifest files. The study was performed on 13,483 real-world Android apps. We also present an open source rule-based static analysis tool which detects developer mistakes in the manifest file. The tool generates a warning message if it detects any misconfigurations in the manifest file. We used the tool to perform the empirical study and it generated total 59,547 configuration errors in 11,110 apps. Only 2,373 apps, among studied apps, do not have any configuration errors.
KW - Android Apps
KW - Android Manifest
KW - Configuration Errors
KW - Rule-Based Error Detection
UR - http://www.scopus.com/inward/record.url?scp=85026533492&partnerID=8YFLogxK
U2 - 10.1109/MSR.2017.41
DO - 10.1109/MSR.2017.41
M3 - Conference contribution
AN - SCOPUS:85026533492
T3 - IEEE International Working Conference on Mining Software Repositories
SP - 25
EP - 36
BT - Proceedings - 2017 IEEE/ACM 14th International Conference on Mining Software Repositories, MSR 2017
PB - IEEE Computer Society
Y2 - 20 May 2017 through 21 May 2017
ER -