update video page

DSOTM-pf · DSOTM-pf · commit 05b4150a79bf · 2021-08-31T16:59:46.000+08:00
diff --git a/.jekyll-metadata b/.jekyll-metadata
diff --git a/_includes/Type-1.html b/_includes/Type-1.html
diff --git a/_includes/header.html b/_includes/header.html
@@ -629,11 +629,10 @@
           </div>
         </li>
         <li><a class="waves-effect" href="{{site.baseurl}}/"><i class="material-icons">home</i>Home</a></li>
-        <li><a class="waves-effect" href="{{site.baseurl}}/empiricalstudy"><i class="material-icons">label</i>Empirical Study</a></li>
         <li><a class="waves-effect" href="{{site.baseurl}}/type-1"><i class="material-icons">description</i>Type-1</a></li>
         <li><a class="waves-effect" href="{{site.baseurl}}/type-2"><i class="material-icons">description</i>Type-2</a></li>
-        <li><a class="waves-effect" href="{{site.baseurl}}/casestudy"><i class="material-icons">chat_bubble</i>Case Study</a></li>
         <li><a class="waves-effect" href="{{site.baseurl}}/benchmarks"><i class="material-icons">assessment</i>Benchmarks</a></li>
+        <li><a class="waves-effect" href="{{site.baseurl}}/empiricalstudy"><i class="material-icons">label</i>Empirical Study</a></li>
         <!-- <li><a class="waves-effect" href="{{site.baseurl}}/feed.xml" target="_blank"><i class="material-icons">rss_feed</i>RSS</a></li> -->
         <!-- <li><div class="divider"></div></li>
         <li><a class="waves-effect" href="{{site.baseurl}}/about"><i class="material-icons">person</i>About</a></li>
diff --git a/_includes/index.html b/_includes/index.html
@@ -1,4 +1,4 @@
-<div class="col s12 tag-div">
+<!-- <div class="col s12 tag-div">
   <div class="user-content">
     <p>
       Android platform introduces the runtime permission model since version 6.0. The new model greatly improves data privacy and user experience, but brings new challenges for app developers. First,the new model allows users to freely revoke granted permissions.Hence, developers cannot simply assume that permissions granted to an app would keep being granted. Instead, they should maketheir app carefully check the permission status before invoking any permission-protected APIs. Second, the permission specification keeps evolving, bringing new types of compatibility issues to the ecosystem.
@@ -9,4 +9,4 @@
     <p>
     </p>
   </div>
-</div>
+</div> -->
diff --git a/_includes/videopages/type1/notecryptpro.html b/_includes/videopages/type1/notecryptpro.html
@@ -1,10 +1,10 @@
-<div class="col s12 tag-div">
+<!-- <div class="col s12 tag-div">
     <div class="user-content">
       <p>
         Description of this bug.
       </p>
     </div>
-</div>
+</div> -->
 
 <!-- <embed src="/assets/res/videos/NoteBuddy_v1.3.2.mp4" autostart="false"/> -->
 
diff --git a/index.md b/index.md
@@ -6,42 +6,31 @@ css: ["index.css"]
 {% include index.html %}
 
 
+##### 1: Type-1 bugs in real apps
+(Missing Permission Checks): A dangerous API is called without a guarding permission check.
 
-______
-
-##### 1: Empirical Study
-To understand the practices of runtime permissions and exposethe limitations of existing work, we conducted an empirical studyto investigate the following three research questions.
-
-[**Click me see details**](https://aper-project.github.io/empiricalstudy)
-
-___
-
-##### 2: Type-1 Real Bugs
-(Missing Permission Checks): A dangerous API iscalled without a guarding permission check.
-
-[**Click me see details**](https://aper-project.github.io/type-1)
+[**Click for more details**](https://aper-project.github.io/type-1)
 
 ---
 
-##### 3: Type-2 Real Bugs
+##### 2: Type-2 bugs in real apps
 (Incompatible Permission Usages): A new dangerousAPI is called on lower platforms, or the evolution of permissionspecifications is not fully handled.
 
-[**Click me see details**](https://aper-project.github.io/type-2)
+[**Click for more details**](https://aper-project.github.io/type-2)
 
 ---
 
-##### 4: Case Study
--  Type-1 misuse bug
--  Safe inter-component ARP usage
--  Type-2 bug in TPL
--  Countermeasure against permission evolution
+##### 3: Benchmarks
+We built a benchmark, ARPfix, that contains buggy ARPusages in real open-source apps, and the corresponding patches.
+
 
-[**Click me see details**](https://aper-project.github.io/casestudy)
+[**Click for more details**](https://aper-project.github.io/benchmarks)
 
 ---
 
-##### 5: Benchmarks
-We built a benchmark, ARPfix, that contains buggy ARPusages in real open-source apps, and the corresponding patches.
+##### 4: Empirical Study
+To understand the practices of runtime permissions and exposethe limitations of existing work, we conducted an empirical studyto investigate the following three research questions.
 
+[**Click for more details**](https://aper-project.github.io/empiricalstudy)
 
-[**Click me see details**](https://aper-project.github.io/benchmarks)
+---
diff --git a/notecryptpro.md b/notecryptpro.md
@@ -3,4 +3,53 @@ layout: page
 css: ["projects.css"]
 # js: ["https://cdnjs.cloudflare.com/ajax/libs/geopattern/1.2.3/js/geopattern.min.js", "projects.js"]
 ---
-{% include videopages/type1/notecryptpro.html %}
+---
+
+|      Device Name     | Android Version |    App Name    | App Version |
+|:--------------------:|:---------------:|:--------------:|:-----------:|
+| Samsung Galaxy Note4 |      6.0.1      | Note Crypt Pro |     1.44    |
+
+---
+
+{% include videopages/type1/notecryptpro.html %}
+
+
+##### Description
+Reproduce crash
+1. grant the storage permission for the app
+2. create a database in the main activity
+3. select a database and enter the SelectDatabaseActivity
+4. go to the system setting and revoke the storage permission
+5. back to the app and it crashes
+
+##### Aper Outputs
+```
+API:
+	<android.os.Environment: java.io.File getExternalStorageDirectory()>
+---
+PERMISSIONS:
+	[android.permission.READ_EXTERNAL_STORAGE,android.permission.WRITE_EXTERNAL_STORAGE]
+---
+CALLCHAIN:
+	com.notecrypt.ui.SelectDatabaseActivity$2$2.onClick(android.content.DialogInterface,int)void
+	 com.notecrypt.ui.SelectDatabaseActivity.a(com.notecrypt.ui.SelectDatabaseActivity,java.lang.String,boolean)void
+	  com.notecrypt.ui.SelectDatabaseActivity.a(java.lang.String,boolean)void
+	   com.notecrypt.utils.StringMethods.fixPath(java.lang.String)java.lang.String
+	    android.os.Environment.getExternalStorageDirectory()java.io.File
+
+======
+
+DANGEROUS: android.permission.READ_EXTERNAL_STORAGE
+	Is Declared: false
+	Check Sites: NONE
+	Request Sites: NONE
+	Has Handle: in <com.notecrypt.ui.SelectDatabaseActivity: void onRequestPermissionsResult(int,java.lang.String[],int[])>
+
+---
+DANGEROUS: android.permission.WRITE_EXTERNAL_STORAGE
+	Is Declared: true
+	Check Sites: NONE
+	Request Sites: NONE
+	Has Handle: in <com.notecrypt.ui.SelectDatabaseActivity: void onRequestPermissionsResult(int,java.lang.String[],int[])>
+```
+
