I know what leaked in your pocket: uncovering privacy leaks on Android Apps with Static Taint Analysis

Android applications may leak privacy data carelessly or maliciously. In this work we perform inter-component data-flow analysis to detect privacy leaks between components of Android applications. Unlike all current approaches, our tool, called IccTA, propagates the context between the components, which improves the precision of the analysis. IccTA outperforms all other available tools by reaching a precision of 95.0% and a recall of 82.6% on DroidBench. Our approach detects 147 inter-component based privacy leaks in 14 applications in a set of 3000 real-world applications with a precision of 88.4%. With the help of ApkCombiner, our approach is able to detect inter-app based privacy leaks.

Data and Resources

I know what leaked in your pocket: uncovering...HTML
Explore
- More information
- Go to resource

Additional Info

Field	Value
Source	https://hal.science/hal-00985490
Author	Li, Li, Bartel, Alexandre, Klein, Jacques, Le Traon, Yves, Arzt, Steven, Rasthofer, Siegfried, Bodden, Eric, Octeau, Damien, Mcdaniel, Patrick
Maintainer	CCSD
Last Updated	May 5, 2026, 12:35 (UTC)
Created	May 5, 2026, 12:35 (UTC)
Identifier	hal-00985490
Language	en
Rights	https://about.hal.science/hal-authorisation-v1/
contributor	Interdisciplinary Centre for Security, Reliability and Trust (SnT) ; Université du Luxembourg = University of Luxembourg = Universität Luxemburg (uni.lu)
creator	Li, Li
date	2014-04-29T00:00:00
harvest_object_id	5cee36de-7539-49af-9cfb-fa8f5e73fba3
harvest_source_id	3374d638-d20b-4672-ba96-a23232d55657
harvest_source_title	test moissonnage SELUNE
metadata_modified	2025-12-24T00:00:00
set_spec	type:REPORT