Publication Type:

Journal Article


Communications in Computer and Information Science, Springer Verlag, Volume 536, p.530-537 (2015)



Android (operating system), High level languages, HTTP, Hybrid applications, Java programming language, Javascript, Libraries, Low overhead, Native code, Network security, Processing overhead, Public key cryptography, Web content, Webview


WebView, an Android component to load and display web content, has become the center of attraction for attackers as its use increases with the increased trend of hybrid application development. The attackers mainly concentrate on abusing the JavaScript interface and accessing the native code. Since most of the developers do not go for HTTPS secure connections to decrease processing overhead, injection attacks becomes easy. The attacker looks for the JavaScript interface implementation in well known libraries like ad-provider libraries or hybrid application wrapper libraries and try to inject code that uses them. This paper presents a low overhead solution to use public key cryptography for ensuring integrity over data transferred and thus prevent such attacks. © Springer International Publishing Switzerland 2015.


cited By 0; Conference of 3rd International Symposium on Security in Computing and Communications, SSCC 2015 ; Conference Date: 10 August 2015 Through 13 August 2015

Cite this Research Publication

K. Jamsheed and Praveen, K., “A low overhead prevention of android web view abuse attacks”, Communications in Computer and Information Science, vol. 536, pp. 530-537, 2015.