To quote Peter’s announcement to the TaintDroid Google Group:
We are happy to announce an updated source code release of TaintDroid based on Android 2.3.4. Please visit http://www.appanalysis.org/download.html for instructions on how to download and build the code. Major changes include:
- support for Nexus S in addition to Nexus One
- support for Dalvik JIT compiler
- taint propagation for native inline functions
- SSL socket taint sink
- and other minor bug-fixes
Please post any questions or problems to this discussion group.
Thanks for your interest in TaintDroid!
Even if you have secure hardware, there are a number of thorny issues that make these questions hard to answer, including user privacy, developer flexibility, legacy apps, users’ app choice, and devices’ limited bandwidth and battery power. YouProve is not a silver bullet, but we think it is a good start and hope that more people will work on this very important problem. Please drop me an email if you have any feedback.
I would also like to mention that one of the best things about this paper is that it has three undergraduate co-authors: Kyungmin (Jason) Lee, Henry Qin, and DJ Sharkey. We have excellent CS students at Duke, and you should definitely be trying to recruit them to your company or grad school.
In any case, the rest of the SenSys program looks great too, and I hope to see you in Seattle in November.