TY - GEN
T1 - CrySL
T2 - 32nd European Conference on Object-Oriented Programming, ECOOP 2018
AU - Krüger, Stefan
AU - Späth, Johannes
AU - Ali, Karim
AU - Bodden, Eric
AU - Mezini, Mira
N1 - Publisher Copyright:
© Stefan Krüger and Johannes Späth and Karim Ali and Eric Bodden and Mira Mezini.
PY - 2018/7/1
Y1 - 2018/7/1
N2 - Various studies have empirically shown that the majority of Java and Android apps misuse cryptographic libraries, causing devastating breaches of data security. It is crucial to detect such misuses early in the development process. To detect cryptography misuses, one must first define secure uses, a process mastered primarily by cryptography experts, and not by developers. In this paper, we present CrySL, a definition language for bridging the cognitive gap between cryptography experts and developers. CrySL enables cryptography experts to specify the secure usage of the cryptographic libraries that they provide. We have implemented a compiler that translates such CrySL specification into a context-sensitive and flow-sensitive demand-driven static analysis. The analysis then helps developers by automatically checking a given Java or Android app for compliance with the CrySL-encoded rules. We have designed an extensive CrySL rule set for the Java Cryptography Architecture (JCA), and empirically evaluated it by analyzing 10,000 current Android apps. Our results show that misuse of cryptographic APIs is still widespread, with 95% of apps containing at least one misuse. Our easily extensible CrySL rule set covers more violations than previous special-purpose tools with hard-coded rules, with our tooling offering a more precise analysis.
AB - Various studies have empirically shown that the majority of Java and Android apps misuse cryptographic libraries, causing devastating breaches of data security. It is crucial to detect such misuses early in the development process. To detect cryptography misuses, one must first define secure uses, a process mastered primarily by cryptography experts, and not by developers. In this paper, we present CrySL, a definition language for bridging the cognitive gap between cryptography experts and developers. CrySL enables cryptography experts to specify the secure usage of the cryptographic libraries that they provide. We have implemented a compiler that translates such CrySL specification into a context-sensitive and flow-sensitive demand-driven static analysis. The analysis then helps developers by automatically checking a given Java or Android app for compliance with the CrySL-encoded rules. We have designed an extensive CrySL rule set for the Java Cryptography Architecture (JCA), and empirically evaluated it by analyzing 10,000 current Android apps. Our results show that misuse of cryptographic APIs is still widespread, with 95% of apps containing at least one misuse. Our easily extensible CrySL rule set covers more violations than previous special-purpose tools with hard-coded rules, with our tooling offering a more precise analysis.
KW - Cryptography
KW - Domain-specific language
KW - Static analysis
UR - http://www.scopus.com/inward/record.url?scp=85052018188&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85052018188&partnerID=8YFLogxK
U2 - 10.4230/LIPIcs.ECOOP.2018.10
DO - 10.4230/LIPIcs.ECOOP.2018.10
M3 - Conference contribution
AN - SCOPUS:85052018188
T3 - Leibniz International Proceedings in Informatics, LIPIcs
BT - 32nd European Conference on Object-Oriented Programming, ECOOP 2018
A2 - Millstein, Todd
PB - Schloss Dagstuhl- Leibniz-Zentrum fur Informatik GmbH, Dagstuhl Publishing
Y2 - 16 July 2018 through 21 July 2018
ER -