loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Kris Heid ; Jens Heider ; Matthias Ritscher and Jan-Peter Stotz

Affiliation: ATHENE - National Research Center for Applied Cybersecurity, Fraunhofer Institute for Secure Information Technology SIT, Rheinstraße 75, 64295 Darmstadt, Germany

Keyword(s): Cryptography, Agility, Android, Static Analysis.

Abstract: Cryptography algorithms are applicable in many use cases such as for example encryption, hashing, signing. Cryptography has been used since centuries, however some cryptography algorithms have been proven to be easily breakable (under certain configurations or conditions) and should thus be avoided. It is not easy for a developer with little cryptographic background to choose secure algorithms and configurations from the plenitude of options. Several publications already proved the disastrous cryptographic quality in mobile apps in the past. In this publication we research how cryptography of the top 2000 Android and iOS applications evolved over the past three years. We analyze at the example of the weak AES/ECB mode how and why apps changed from an insecure to a secure configuration and vice versa.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.237.15.145

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Heid, K.; Heider, J.; Ritscher, M. and Stotz, J. (2023). Tracing Cryptographic Agility in Android and iOS Apps. In Proceedings of the 9th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-624-8; ISSN 2184-4356, SciTePress, pages 38-45. DOI: 10.5220/0011620000003405

@conference{icissp23,
author={Kris Heid. and Jens Heider. and Matthias Ritscher. and Jan{-}Peter Stotz.},
title={Tracing Cryptographic Agility in Android and iOS Apps},
booktitle={Proceedings of the 9th International Conference on Information Systems Security and Privacy - ICISSP},
year={2023},
pages={38-45},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011620000003405},
isbn={978-989-758-624-8},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 9th International Conference on Information Systems Security and Privacy - ICISSP
TI - Tracing Cryptographic Agility in Android and iOS Apps
SN - 978-989-758-624-8
IS - 2184-4356
AU - Heid, K.
AU - Heider, J.
AU - Ritscher, M.
AU - Stotz, J.
PY - 2023
SP - 38
EP - 45
DO - 10.5220/0011620000003405
PB - SciTePress