Yes, we get it, static analysis is approximate. But we live in reality. The stowaway tool has been evaluated for thousands of apps substantiated by dynamic analysis, and backed by a CCS paper.
The plain and simple is, you will not write the masochistic cases, and while this tool makes necessary approximations, you won't write such cases in your real apps. Typically the only cases that really stress static analyses (in this case, which is a fairly simple static analysis, on top of a good framework) are malware that is written to specifically evade it. So if this is your app, and you haven't spent a few months finding out how to confuse pointer analyses, use this tool and it will be extremely likely it will work. kris On Mon, Jun 11, 2012 at 11:47 AM, Chris Stratton <[email protected]> wrote: > On Jun 11, 10:40 am, Kristopher Micinski <[email protected]> > wrote: >> On Mon, Jun 11, 2012 at 7:39 AM, Live Happy <[email protected]> wrote: >> > it is there a tools or way to know what is the unused permission in the >> > application >> >> http://www.android-permissions.orgdoes exactly this. > > Perhaps in some cases. But not every means of using something is > detectable by static analysis. > > -- > You received this message because you are subscribed to the Google > Groups "Android Developers" group. > To post to this group, send email to [email protected] > To unsubscribe from this group, send email to > [email protected] > For more options, visit this group at > http://groups.google.com/group/android-developers?hl=en -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/android-developers?hl=en
