When analyzing Android Software (good and bad) it becomes apparent that many
projects use libraries and frameworks for different purposes.
SAAf should have the capability to efficiently identify these libraries in the
analyzed apks. Some reasons:
* False Positive Reduciton: Especially ad-frameworks expose features that might sometimes look suspicious such as access to internet and location. Realiable detection and filtering (if desired) may considerably reduce the number of false positives
* Workload Reduction: Code that has been identified as belonging to a benign library can be excluded from further analysis improving the throughput of the system.
So far SAAF recognizes several ad-frameworks based on their package structure.
A better approach would be to identify classes at least based on the pacakge
name and some sort of hash.
Original issue reported on code.google.com by linux.ni...@gmail.com on 10 Jun 2013 at 1:13
Original issue reported on code.google.com by
linux.ni...@gmail.comon 10 Jun 2013 at 1:13