Data Leak Analysis
Misael Mongiovì's Blog

Data Leak Analysis

A tool for detecting data leaks in Java applications.

JADAL combines static and dynamic data flow analysis for detecting data leaks in Java applications. It minimizes the overhead by computing a minimal set of “application points” that need to be monitored and injecting control code on the target application.

Papers

Misael Mongiovì, Giovanni Giannone, Andrea Fornaia, Giuseppe Pappalardo, Emiliano Tramontana.
Combining static and dynamic data flow analysis: a hybrid approach for detecting data leaks in Java applications.
The 30th ACM/SIGAPP Symposium On Applied Computing. 2015. pdf

Download

An alpha version of the tool and an example of a leaking application are available for download.

Download JADAL.

Download a case study example of a leaking application.