Title:
OSS Police
OSS Police
No Thumbnail Available
Author(s)
Bijlani, Ashish
Duan, Ruian
Duan, Ruian
Advisor(s)
Editor(s)
Collections
Supplementary to
Permanent Link
Abstract
In order to reduce time to market, mobile app developers often focus their efforts on creating new, unique features or workflows, and rely on third-party Open Source Software (OSS) for common elements of app code. Unfortunately, careless use of OSS can introduce significant legal and security risks that jeopardizes the security and privacy of end users, and may lead to high financial loss for the app developer. We propose OSS Police, a scalable and fully-automated tool for mobile app developers to quickly analyze their apps and identify free software license violations as well as known vulnerabilities in open-source software (OSS) code. OSS Police introduces a novel hierarchical indexing scheme to achieve both high scalability and accuracy, and is capable of efficiently comparing similarities of app binaries against a database of hundreds of thousands of OSS sources (billions of lines of code). Research by Ashish Bijlani, Ruian Duan, and Meng Xu. AWARDS: Grand Prize - Create-X Startup LAUNCH incubator seat, 1st Place - Commercialization Track
Sponsor
Date Issued
2018-04-12
Extent
13:19 minutes
Resource Type
Moving Image
Resource Subtype
Lecture