A Large Scale Investigation of Obfuscation Use in Google Play
Dominik Wermke, Nicolas Huaman, Yasemin Acar, Brad Reaves, Patrick, Traynor, Sascha Fahl
TL;DR
This study analyzes obfuscation use in 1.7 million Android apps, revealing low adoption rates, developer perceptions, and challenges in applying obfuscation techniques, highlighting the need for better tools and education.
Contribution
It provides the first large-scale analysis of obfuscation practices in Android apps and investigates developer attitudes and difficulties with obfuscation.
Findings
Only 24.92% of apps are obfuscated.
Developers perceive risks but do not fear theft.
Many developers struggle to successfully obfuscate apps.
Abstract
Android applications are frequently plagiarized or repackaged, and software obfuscation is a recommended protection against these practices. However, there is very little data on the overall rates of app obfuscation, the techniques used, or factors that lead to developers to choose to obfuscate their apps. In this paper, we present the first comprehensive analysis of the use of and challenges to software obfuscation in Android applications. We analyzed 1.7 million free Android apps from Google Play to detect various obfuscation techniques, finding that only 24.92% of apps are obfuscated by the developer. To better understand this rate of obfuscation, we surveyed 308 Google Play developers about their experiences and attitudes about obfuscation. We found that while developers feel that apps in general are at risk of plagiarism, they do not fear theft of their own apps. Developers also…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.